CVE-2022-4231: Session Fixation

November 30, 2022 (updated December 6, 2022)

A vulnerability, which was classified as problematic, has been found in Tribal Systems Zenario CMS 9.3.57595. This issue affects some unknown processing of the component Remember Me Handler. The manipulation leads to session fixiation. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-214589 was assigned to this vulnerability.

References

github.com/lithonn/bug-report/tree/main/vendors/tribalsystems/zenario/session-fixation
nvd.nist.gov/vuln/detail/CVE-2022-4231
vuldb.com/?id.214589

Detect and mitigate CVE-2022-4231 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →