6 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-14826
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in FreeIPA versions 4.5.0 and later. Session cookies were retained in the cache after logout. An attacker could abuse this flaw if they obtain...
RHEL 7 : ipa (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - ipa: Session not terminated after logout CVE-2019-14826 Note that Nessus has not tested for this issue but has...
RHEL 8 : ipa (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - ipa: Session not terminated after logout CVE-2019-14826 Note that Nessus has not tested for this issue but has...
RHEL 7 : ipa (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - ipa: Session not terminated after logout CVE-2019-14826 Note that Nessus has not tested for this issue but has...
CVE-2019-14826
A flaw was found in FreeIPA versions 4.5.0 and later. Session cookies were retained in the cache after logout. An attacker could abuse this flaw if they obtain previously valid session cookies and can use this to gain access to the session...
CVE-2019-14826
CVE-2019-14826 affects FreeIPA 4.5.0 and later. The vulnerability arises because session cookies are retained in the cache after logout, allowing an attacker who obtains previously valid cookies to gain access to a session. This is described in the NVD entry and Red Hat advisory context, with CVS...