exploitDog

GHSA-gwpf-pfph-7ff7

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5

Описание

IBM Jazz Foundation could allow an authenticated user to take over a previously logged in user due to session expiration not being enforced.

IBM Jazz Foundation could allow an authenticated user to take over a previously logged in user due to session expiration not being enforced.

Ссылки

EPSS

Процентиль: 41%

0.00193

Низкий

5 Medium

CVSS3

CVE ID

Дефекты

CWE-384

Связанные уязвимости

CVE-2016-6040

CVSS3: 5

nvd

около 9 лет назад

IBM Jazz Foundation could allow an authenticated user to take over a previously logged in user due to session expiration not being enforced.

EPSS

Процентиль: 41%

0.00193

Низкий

5 Medium

CVSS3

CVE ID

Дефекты

CWE-384