CVE-2024-34007

{"id": "CVE-2024-34007", "cveTags": [], "metrics": {}, "published": "2024-05-31T21:15:09.647", "references": [{"url": "https://moodle.org/mod/forum/discuss.php?d=458396", "source": "patrick@puiterwijk.org"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "patrick@puiterwijk.org", "description": [{"lang": "en", "value": "CWE-352"}]}], "descriptions": [{"lang": "en", "value": "The logout option within MFA did not include the necessary token to avoid the risk of users inadvertently being logged out via CSRF."}, {"lang": "es", "value": "La opci\u00f3n de cierre de sesi\u00f3n dentro de MFA no inclu\u00eda el token necesario para evitar el riesgo de que los usuarios cerraran sesi\u00f3n sin darse cuenta a trav\u00e9s de CSRF."}], "lastModified": "2024-06-03T14:46:24.250", "sourceIdentifier": "patrick@puiterwijk.org"}