Description
In TARGIT Decision Suite 23.2.15007.0 before Autumn 2023, the session token is part of the URL and may be sent in a cleartext HTTP session.
Published: 2024-05-27
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2024-36364 In TARGIT Decision Suite 23.2.15007.0 before Autumn 2023, the session token is part of the URL and may be sent in a cleartext HTTP session.
History

Tue, 18 Mar 2025 18:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-319
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

Tue, 14 Jan 2025 17:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-279
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

Fri, 27 Sep 2024 14:45:00 +0000

Type Values Removed Values Added
References

Subscriptions

Targit Decision Suite 23.2.15007.0
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2025-03-18T17:54:51.682Z

Reserved: 2024-05-27T00:00:00.000Z

Link: CVE-2024-36426

cve-icon Vulnrichment

Updated: 2024-08-02T03:37:05.049Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-27T22:15:08.507

Modified: 2025-03-18T18:15:26.930

Link: CVE-2024-36426

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses