Session Takeover Vulnerability in FICO Origination Manager Decision Module 4.8.1

Session Takeover Vulnerability in FICO Origination Manager Decision Module 4.8.1

CVE-2023-30056 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

A session takeover vulnerability exists in FICO Origination Manager Decision Module 4.8.1 due to insufficient protection of the JSESSIONID cookie.

Learn more about our Web Application Penetration Testing UK.