Logsign · Logsign Unified Secops Platform · CVE-2024-7604
**Name of the Vulnerable Software and Affected Versions**
Logsign Unified SecOps Platform (affected versions not specified)
**Description**
This issue allows local attackers to bypass authentication on affected installations. The flaw exists within the HTTP API service, which listens on TCP port 443 by default, due to the lack of proper validation of the user's license expiration date. An attacker can leverage this to bypass authentication on the system.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.