Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2021-27087

Malware in sbrugna...

8.7CVSS6.4AI score0.00969EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 9:28 p.m.6 views

CVE-2021-3844

Rapid7 InsightVM suffers from insufficient session expiration when an administrator performs a security relevant edit on an existing, logged on user. For example, if a user's password is changed by an administrator due to an otherwise unrelated credential leak, that user account's current session...

8.7CVSS6.8AI score0.00969EPSS
Exploits0
Circl
Circl
added 2023/03/24 7:42 p.m.5 views

CVE-2019-5638

creationtimestamp| type| source ---|---|--- 2023-03-24 19:42:29+00:00| seen| https://t.me/cibsecurity/60651 2023-03-28 07:42:31+00:00| seen| https://t.me/VulnerabilityNews/32377...

8.7CVSS6.7AI score0.00969EPSS
Exploits0References2
NVD
NVD
added 2023/03/24 5:15 p.m.18 views

CVE-2021-3844

Rapid7 InsightVM suffers from insufficient session expiration when an administrator performs a security relevant edit on an existing, logged on user. For example, if a user's password is changed by an administrator due to an otherwise unrelated credential leak, that user account's current session...

5.7CVSS6.8AI score0.0036EPSS
Exploits0References2
Prion
Prion
added 2023/03/24 5:15 p.m.13 views

Design/Logic Flaw

Rapid7 InsightVM suffers from insufficient session expiration when an administrator performs a security relevant edit on an existing, logged on user. For example, if a user's password is changed by an administrator due to an otherwise unrelated credential leak, that user account's current session...

5.8CVSS6.8AI score0.00969EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/03/24 4:37 p.m.60 views

CVE-2021-3844

Rapid7 InsightVM is affected by an insufficient session expiration flaw when an administrator performs a security-related edit on an existing, logged-in user. The issue can allow the attacker who originally captured the credentials to remain logged in after the password or related edit, potential...

5.7CVSS6.7AI score0.0036EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/08/21 8:15 p.m.17 views

CVE-2019-5638

Rapid7 Nexpose versions 6.5.50 and prior suffer from insufficient session expiration when an administrator performs a security relevant edit on an existing, logged on user. For example, if a user's password is changed by an administrator due to an otherwise unrelated credential leak, that user...

8.7CVSS6AI score0.00969EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/08/21 7:36 p.m.21 views

CVE-2019-5638 Rapid7 Nexpose Insufficient Session Management

Rapid7 Nexpose versions 6.5.50 and prior suffer from insufficient session expiration when an administrator performs a security relevant edit on an existing, logged on user. For example, if a user's password is changed by an administrator due to an otherwise unrelated credential leak, that user...

8.7CVSS6.1AI score0.00969EPSS
Exploits0References2
CVE
CVE
added 2019/08/21 7:36 p.m.74 views

CVE-2019-5638

Summary: CVE-2019-5638 relates to Rapid7 Nexpose/InsightVM where an administrator’s security edits (e.g., password changes) do not terminate existing sessions, allowing a previously compromised user to remain logged in. Affected versions (per sources): Nexpose 6.5.50 and prior; InsightVM/Nexpose ...

8.7CVSS6AI score0.00969EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder