cvedb.io
CVE-2024-6078
UNKNOWN · CVSS n/a
EPSS exploitation probability: 0%
Published 2024-08-14T20:15:12.780 · Last modified 2026-06-17T08:17:14.687

Summary

CVE-2024-6078 IMPACT An improper authentication vulnerability exists in the affected product, which could allow a malicious user to generate cookies for any user ID without the use of a username or password. If exploited, a malicious user could take over the account of a legitimate user. The malicious user would be able to view and modify data stored in the cloud.

Does this affect you?

Add your gear to cvedb and we'll alert you only when a vendor you run ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.