CVE-2024-34092

Name of the Vulnerable Software and Affected Versions Archer Platform versions prior to 2024.04 Archer Platform version 6.14.0.3 is a fixed release, implying versions prior to 6.14.0.3 are also affected, but since 6.14.0.3 is mentioned as a fixed release and is part of the versions prior to 2024.04, we focus on the broader range for simplicity.

Description An issue was discovered in the Archer Platform where authentication was mishandled. This occurred because the lock did not terminate an existing session.

Recommendations For Archer Platform versions prior to 2024.04, update to version 6.14.0.3 or later to resolve the issue. As a temporary workaround, consider implementing additional session termination mechanisms to mitigate the risk of exploitation until a patch is applied.