CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2024-8644

HIGH
7.5
CVSS Severity Score
EPSS Score0.0590%
EPSS Percentile11.49th
Published2024年9月27日
Last Modified2026年6月2日

Vulnerability Description

Cleartext Storage of Sensitive Information in a Cookie vulnerability in Oceanic Software ValeApp allows Protocol Manipulation, : JSON Hijacking (aka JavaScript Hijacking). This issue affects ValeApp: before v2.0.0.

Affected Platforms (CPE)

📦
Oceanicsoft

Valeapp

< 2.0.0

References & Advisories

🔗 https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1562
🔗 https://www.usom.gov.tr/bildirim/tr-24-1562

相關漏洞威脅

CVE-2024-86439.8

Session Fixation vulnerability in Oceanic Software ValeApp allows Brute Force, Session Hijacking. This issue affects ValeApp: bef...

CVE-2024-86079.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Oceanic Software ValeApp all...

CVE-2024-86097.5

Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information. T...

CVE-2024-86085.4

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Oceanic Software Vale...

CVE-2024-8644 Detail & Impact Analysis | CVSS 7.5 (HIGH) | Cyber-Sec.Space | Cyber-Sec.Space