4 matches found
CVE-2021-22820
A CWE-614 Insufficient Session Expiration vulnerability exists that could allow an attacker to maintain an unauthorized access over a hijacked session to the charger station web server even after the legitimate user account holder has changed his password. Affected Products: EVlink City EVC1S22P4...
EUVD-2021-9955
Malicious code in bioql PyPI...
Session fixation
A CWE-614 Insufficient Session Expiration vulnerability exists that could allow an attacker to maintain an unauthorized access over a hijacked session to the charger station web server even after the legitimate user account holder has changed his password. Affected Products: EVlink City EVC1S22P4...
CVE-2021-22820
CVE-2021-22820 describes a CWE-614Insufficient Session Expiration vulnerability in Schneider Electric EVlink products. Affected are EVlink City (EVC1S22P4/EVC1S7P4), EVlink Parking (EVW2/EVF2/EVP2PE), and EVlink Smart Wallbox (EVB1A), with all versions prior to R8 V3.4.0.2. The issue allows an at...