CVE-2024-27179

Session disclosure inside the log files

CVSS 4.7 MEDIUMEPSS 0.3%CWE-1295

In short

Admin login cookies are saved in plain text in log files, allowing attackers to steal them and gain unauthorized access to administrator accounts.

Technical detail

CWE-1295 involves storing sensitive authentication tokens in plaintext logs accessible to threat actors. An attacker with log file access can extract admin session cookies and use them to bypass authentication controls. This requires local or remote log access but enables complete account takeover of administrative accounts.

Summary generated and translated by AI from the official description.

Admin cookies are written in clear-text in logs. An attacker can retrieve them and bypass the authentication mechanism. As for the affected products/models/versions, see the reference URL.

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Toshiba Tec Corporation · Toshiba Tec e-Studio multi-function peripheral (MFP)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://seclists.org/fulldisclosure/2024/Jul/1 https://jvn.jp/en/vu/JVNVU97136265/index.html https://www.toshibatec.com/information/20240531_01.html https://www.toshibatec.com/information/pdf/information20240531_01.pdf