Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-29901

The AuthKit library for Next.js provides helpers for authentication and session management using WorkOS & AuthKit with Next.js. A user can reuse an expired session by controlling the `x-workos-session` header. The vulnerability is patched in v0.4.2.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 56.9%
CVSS Severity
CVSS v3 Score 4.8
Products affected by CVE-2024-29901
  • Workos » Authkit » Version: 0.1.0
    cpe:2.3:a:workos:authkit:0.1.0
  • Workos » Authkit » Version: 0.2.0
    cpe:2.3:a:workos:authkit:0.2.0
  • Workos » Authkit » Version: 0.3.0
    cpe:2.3:a:workos:authkit:0.3.0
  • Workos » Authkit » Version: 0.4.0
    cpe:2.3:a:workos:authkit:0.4.0
  • Workos » Authkit » Version: 0.4.1
    cpe:2.3:a:workos:authkit:0.4.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved