Use of Persistent Cookies Containing Sensitive Information in ADAM-5630

#VU97755 Use of Persistent Cookies Containing Sensitive Information in ADAM-5630

Published: 2024-09-27

Vulnerability identifier: #VU97755

Vulnerability risk: Medium

CVSSv3.1: 7 [CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-39275

CWE-ID: CWE-539

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
ADAM-5630
Hardware solutions / Firmware

Vendor:

Description

The vulnerability allows a remote attacker to escalate privileges on the system.

The vulnerability exists due to cookies of authenticated users remain as active valid cookies when a session is closed. A remote attacker on the local network can act with the same level of privileges of the legitimate user.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

External links
http://www.cisa.gov/news-events/ics-advisories/icsa-24-270-02

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Advantech ADAM-5630