CVE-2024-42207 | THREATINT

Description

HCL iAutomate is affected by a session fixation vulnerability. An attacker could hijack a victim's session ID from their authenticated session.

PUBLISHED Reserved 2024-07-29 | Published 2025-02-05 | Updated 2025-02-05 | Assigner HCL

MEDIUM: 5.5CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:L/A:L

Default status

unaffected

6.4.2

affected

Download JSON