Lucene search
VmwareCVELIST:CVE-2022-31677HistoryAug 29, 2022 - 2:03 p.m.
CVE-2022-31677
2022-08-2914:03:02
vmware
www.cve.org
An Insufficient Session Expiration issue was discovered in the Pinniped Supervisor (before v0.19.0). A user authenticating to Kubernetes clusters via the Pinniped Supervisor could potentially use their access token to continue their session beyond what proper use of their refresh token might allow.
CNA Affected
[
{
"product": "Pinniped Supervisor",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Pinniped Supervisor (before v0.19.0)"
}
]
}
]Related
osv
osv
CVE-2022-31677
2022-08-29 15:15:10
BIT-pinniped-2022-31677
2024-03-06 11:01:40
Pinniped Supervisor Insufficient Session Expiration vulnerability
2022-09-01 22:24:05
cve
cve
CVE-2022-31677
2022-08-29 15:15:10
prion
prion
Session fixation
2022-08-29 15:15:00
veracode
veracode
Session Fixation
2022-08-30 03:32:44
gitlab
gitlab
Pinniped Supervisor Insufficient Session Expiration vulnerability
2022-09-01 00:00:00
nvd
nvd
CVE-2022-31677
2022-08-29 15:15:10
github
github
Pinniped Supervisor Insufficient Session Expiration vulnerability
2022-09-01 22:24:05