4 matches found
CVE-2021-3844
creationtimestamp| type| source ---|---|--- 2023-03-24 19:42:29+00:00| seen| https://t.me/cibsecurity/60651...
CVE-2021-3844 Rapid7 InsightVM Insufficient Session Expiration
Rapid7 InsightVM suffers from insufficient session expiration when an administrator performs a security relevant edit on an existing, logged on user. For example, if a user's password is changed by an administrator due to an otherwise unrelated credential leak, that user account's current session...
CVE-2021-3844 Rapid7 InsightVM Insufficient Session Expiration
Rapid7 InsightVM suffers from insufficient session expiration when an administrator performs a security relevant edit on an existing, logged on user. For example, if a user's password is changed by an administrator due to an otherwise unrelated credential leak, that user account's current session...
CVE-2021-3844
Rapid7 InsightVM is affected by an insufficient session expiration flaw when an administrator performs a security-related edit on an existing, logged-in user. The issue can allow the attacker who originally captured the credentials to remain logged in after the password or related edit, potential...