Lucene search
China National Vulnerability DatabaseCNVD-2023-42966HistoryMay 28, 2023 - 12:00 a.m.
Apache InLong Security Bypass Vulnerability
2023-05-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
apache inlong
security bypass
vulnerability
session expiration
attacker
system access
EPSS
0.003
Percentile
65.3%
Apache InLong is the United States Apache (Apache) Foundation’s one-stop massive data integration framework. A security bypass vulnerability exists in Apache InLong versions 1.4.0 through 1.6.0, which stems from insufficient session expiration, and can be exploited by an attacker to reuse old sessions to access the system.
Related
osv
osv
Apache InLong Insufficient Session Expiration vulnerability
2023-07-06 21:14:59
CVE-2023-31065
2023-05-22 16:15:10
cve
cve
CVE-2023-31065
2023-05-22 16:15:10
veracode
veracode
Session Fixation
2023-05-26 05:04:11
prion
prion
Session fixation
2023-05-22 16:15:00
cvelist
cvelist
CVE-2023-31065 Apache InLong: Insufficient Session Expiration in InLong
2023-05-22 15:40:56
huntr
huntr
Insufficient Session Expiration
2023-04-02 03:24:14
github
github
Apache InLong Insufficient Session Expiration vulnerability
2023-07-06 21:14:59
nvd
nvd
CVE-2023-31065
2023-05-22 16:15:10