Session Fixation Vulnerability in Ice Hrm Software by Ice Hrm
CVE-2021-35046
6.1MEDIUM
What is CVE-2021-35046?
A session fixation vulnerability was identified in Ice Hrm version 29.0.0 OS, allowing attackers to exploit a crafted session cookie to hijack valid user sessions. This flaw can lead to unauthorized access and manipulation of user accounts as an attacker can gain control over established sessions without the user's consent. It is crucial for users of Ice Hrm to take appropriate actions to secure their environments against this vulnerability.
