CVE-2023-4392

Name of the Vulnerable Software and Affected Versions Control iD Gerencia Web version 1.30

Description A vulnerability was found in the component Cookie Handler, leading to cleartext storage of sensitive information. The attack may be launched remotely, with a rather high complexity and difficult exploitation. The exploit has been disclosed to the public and may be used.

Recommendations For Control iD Gerencia Web version 1.30, consider disabling the Cookie Handler component until a patch is available. Restrict access to sensitive information to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.