Security Advisory

CVE-2024-58317

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-18 19:53:37

Last updated 2025-12-18 21:19:17

Assigner VulnCheck

State PUBLISHED

Description

A cookie security configuration vulnerability in Kentico Xperience allows attackers to bypass SSL requirements when setting administration cookies via web.config. The vulnerability affects .NET Framework projects by incorrectly handling the requireSSL attribute, potentially compromising session security and authentication state.

← Browse all CVEs View on cve.org ↗