CVE-2024-0351
First published: Tue Jan 09 2024(Updated: )
A vulnerability classified as problematic has been found in SourceCodester Engineers Online Portal 1.0. This affects an unknown part. The manipulation leads to session fixiation. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-250119.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Engineers Online Portal | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-0351?
CVE-2024-0351 is classified as problematic due to session fixation vulnerabilities.
How do I fix CVE-2024-0351?
To mitigate CVE-2024-0351, ensure proper session management and implement secure session identifiers.
Who is affected by CVE-2024-0351?
CVE-2024-0351 affects users of Engineers Online Portal version 1.0.
Can CVE-2024-0351 be exploited remotely?
Yes, CVE-2024-0351 can be exploited remotely, allowing attackers to manipulate sessions.
What is the attack complexity for CVE-2024-0351?
The attack complexity for CVE-2024-0351 is considered to be rather high.
- agent/type
- agent/first-publish-date
- agent/severity
- agent/weakness
- agent/author
- agent/references
- agent/description
- agent/softwarecombine
- agent/event
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/last-modified-date
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/engineers online portal project
- canonical/engineers online portal
- version/engineers online portal/1.0