Vulnerability Details CVE-2024-39275
Cookies of authenticated Advantech ADAM-5630 users remain as active valid cookies when a
session is closed. Forging requests with a legitimate cookie, even if
the session was terminated, allows an unauthorized attacker to act with
the same level of privileges of the legitimate user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.2%
CVSS Severity
CVSS v3 Score 8.0
Products affected by CVE-2024-39275
-
cpe:2.3:h:advantech:adam-5630:-
-
cpe:2.3:o:advantech:adam-5630_firmware:*