Security Advisory

CVE-2024-23679

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-19 20:23:03
Last updated 2026-06-23 16:13:12
Assigner VulnCheck
State PUBLISHED

Description

Enonic XP versions less than 7.7.4 are vulnerable to a session fixation issue. An remote and unauthenticated attacker can use prior sessions due to the lack of invalidating session attributes.