Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/05 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-34007

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The logout option within MFA did not include the necessary token to avoid the risk of users inadvertently being logged out via CSRF. CVE-2024-34007 Note that...

8.8CVSS7.7AI score0.00314EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/05/31 9:15 p.m.15 views

CVE-2024-34007

The logout option within MFA did not include the necessary token to avoid the risk of users inadvertently being logged out via CSRF...

8.8CVSS7.2AI score0.00314EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/31 8:40 p.m.24 views

CVE-2024-34007 moodle: logout CSRF in admin/tool/mfa/auth.php

The logout option within MFA did not include the necessary token to avoid the risk of users inadvertently being logged out via CSRF...

6.8AI score0.00314EPSS
Exploits0References1
CVE
CVE
added 2024/05/31 8:40 p.m.59 views

CVE-2024-34007

The CVE-2024-34007 vulnerability concerns Moodle’s MFA logout functionality (admin/tool/mfa/auth.php) where the logout flow does not include a required CSRF token, exposing users to CSRF logout. Multiple connected sources (OSV, GHSA/GitHub advisories, Nessus/NVD, Ubuntu OSV) corroborate a CSRF ri...

8.8CVSS8.6AI score0.00314EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/05/31 8:40 p.m.38 views

CVE-2024-34007 moodle: logout CSRF in admin/tool/mfa/auth.php

The logout option within MFA did not include the necessary token to avoid the risk of users inadvertently being logged out via CSRF...

6.3AI score0.00314EPSS
Exploits0References1
Rows per page
Query Builder