This vulnerability allows an attacker to bypass authentication in the ReCrystallize Server application by manipulating the ‘AdminUsername’ cookie. This gives the attacker administrative access to the application’s functionality, even when the default password has been changed.
View the template here CVE-2024-26331.yaml
References:
https://nvd.nist.gov/vuln/detail/CVE-2024-26331