PT-2024-37301 · Unknown · Soar Cloud Hr Portal
Published
2024-06-14
·
Updated
2024-08-14
·
CVE-2024-5996
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions:
Soar Cloud HR Portal (affected versions not specified)
Description:
The issue concerns notification emails sent by Soar Cloud HR Portal, which contain a link with embedded session data. These emails are sent without using an encrypted transmission protocol, making the session data vulnerable to interception. Attackers can potentially access and misuse login information.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Soar Cloud Hr Portal