CVE-2021-28411

2023-08-1100:00:00

mitre

www.cve.org

security issue

cookieremembermemanager

privilege escalation

AI Score

9.8

Confidence

High

EPSS

0.004

Percentile

73.3%

JSON

An issue was discovered in getRememberedSerializedIdentity function in CookieRememberMeManager class in lerry903 RuoYi version 3.4.0, allows remote attackers to escalate privileges.

References

github.com/lerry903/RuoYi/issues/20