CVE-2024-24823

🗓️ 07 Feb 2024 17:21:20Reported by GitHub_MType

cve🔗 web.nvd.nist.gov👁 324 Views🌐 WEB

Graylog prior to 5.2.4 re-uses session id, allowing for potential session hijacking by re-authenticating with an existing session cookie

Reporter	Title	Published	Views	Family All 16
Circl	CVE-2024-24823	7 Feb 202419:21	–	circl
CNNVD	Graylog 授权问题漏洞	7 Feb 202400:00	–	cnnvd
CNVD	Graylog Authorization Issues Vulnerability	22 Feb 202400:00	–	cnvd
Cvelist	CVE-2024-24823 graylog2-server Session Fixation vulnerability through cookie injection	7 Feb 202417:21	–	cvelist
EUVD	EUVD-2024-0497	3 Oct 202520:07	–	euvd
Github Security Blog	Graylog session fixation vulnerability through cookie injection	7 Feb 202418:24	–	github
NVD	CVE-2024-24823	7 Feb 202418:15	–	nvd
OSV	CVE-2024-24823 graylog2-server Session Fixation vulnerability through cookie injection	7 Feb 202417:21	–	osv
OSV	GHSA-3XF8-G8GR-G7RH Graylog session fixation vulnerability through cookie injection	7 Feb 202418:24	–	osv
Prion	Cross site scripting	7 Feb 202418:15	–	prion

NVD

Vulners

Node

graylog graylogRange4.3.0–5.1.11

graylog graylogRange5.2.0–5.2.4

[
  {
    "vendor": "Graylog2",
    "product": "graylog2-server",
    "versions": [
      {
        "version": ">= 4.3.0, < 5.1.11",
        "status": "affected"
      },
      {
        "version": ">= 5.2.0, < 5.2.4",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/Graylog2/graylog2-server/commit/b93a66353f35a94a4e8f3f75ac4f5cdc5a2d4a6a
github	www.github.com/Graylog2/graylog2-server/commit/1596b749db86368ba476662f23a0f0c5ec2b5097
github	www.github.com/Graylog2/graylog2-server/security/advisories/GHSA-3xf8-g8gr-g7rh

Parameter	Position	Path	Description	CWE
authentication	header	/api/system/sessions	Vulnerability where reusing an existing session cookie can grant elevated access on /api/system/sessions.	CWE-384

21 Nov 2024 08:59Current

4.8Medium risk

Vulners AI Score4.8

CVSS 3.14.4 - 5.7

EPSS0.00129

SSVC

CWE-384