PT-2023-19631 · Ptc · Vuforia Studio

Published

2023-06-07

Updated

2023-06-15

CVE-2023-24476

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned.

Description An attacker with local access to the machine could record the traffic, which could allow them to resend requests without the server authenticating that the user or session are valid.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-285

Related Identifiers

CVE-2023-24476

Affected Products

Vuforia Studio

PT-2023-19631 · Ptc · Vuforia Studio

CVE-2023-24476

Weakness Enumeration

Related Identifiers

Affected Products

References · 5