3 matches found
CVE-2023-49259
The authentication cookies are generated using an algorithm based on the username, hardcoded secret and the up-time, and can be guessed in a reasonable time...
CVE-2023-49259
CVE-2023-49259 describes authentication cookies generated via username, a hardcoded secret, and uptime, making them guessable within a reasonable time. The provided metrics indicate a HIGH-severity issue (CVSS v3.1: 7.5, Network attack vector, Low attack complexity, No privileges required, Confid...
CVE-2023-49259 Bruteforcing authentication cookie for a given user
The authentication cookies are generated using an algorithm based on the username, hardcoded secret and the up-time, and can be guessed in a reasonable time...