exploitDog

GHSA-fh84-5q42-44p3

Опубликовано: 05 фев. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 6.3

Описание

IBM Concert 1.0.0 through 2.1.0 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.

IBM Concert 1.0.0 through 2.1.0 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.

Ссылки

EPSS

Процентиль: 10%

0.00036

Низкий

6.3 Medium

CVSS3

CVE ID

Дефекты

CWE-613

Связанные уязвимости

CVE-2024-43181

CVSS3: 6.3

nvd

4 дня назад

IBM Concert 1.0.0 through 2.1.0 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.

EPSS

Процентиль: 10%

0.00036

Низкий

6.3 Medium

CVSS3

CVE ID

Дефекты

CWE-613