Design/Logic Flaw

2022-07-0509:15:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

30.3%

Old session tokens can be used to authenticate to the application and send authenticated requests.

CPENameOperatorVersion
nakamalt3.13.0

CPE	Name	Operator	Version
	nakama	lt	3.13.0

References

github.com/heroiclabs/nakama/commit/ce8d3921e2acd44ef8b5e6edfe595b6df067b166

huntr.dev/bounties/35acf263-6db4-4310-ab27-4c3c3a53f796

0.001 Low

EPSS

Percentile

30.3%

Related for PRION:CVE-2022-2306