CVE-2024-27156 Information
Jun 15, 2024
cve
Description
The session cookies used for authentication are stored in clear-text logs. An attacker can retrieve authentication sessions. A remote attacker can retrieve the credentials and bypass the authentication mechanism. As for the affected products/models/versions see the reference URL.
Reference
https://www.toshibatec.com/information/20240531_01.html https://www.toshibatec.com/information/pdf/information20240531_01.pdf https://jvn.jp/en/vu/JVNVU97136265/index.html
Share on: