Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:23 p.m.11 views

CVE-2021-24019

An insufficient session expiration vulnerability CWE- 613 in FortiClientEMS versions 6.4.2 and below, 6.2.8 and below may allow an attacker to reuse the unexpired admin user session IDs to gain admin privileges, should the attacker be able to obtain that session ID via other, hypothetical attacks...

9.8CVSS6.9AI score0.03841EPSS
Exploits0References1
Circl
Circl
added 2021/10/06 2:37 p.m.16 views

CVE-2021-24019

creationtimestamp| type| source ---|---|--- 2021-10-06 14:37:52+00:00| seen| https://t.me/cibsecurity/30031 2025-03-28 10:00:05+00:00| published-proof-of-concept| Telegram/aPCPdIPGkODZoxCaDJ8O34mKLW0JTsj39ljwIG9BQaA-s 2025-03-31 21:02:06+00:00| seen|...

9.8CVSS8.7AI score0.03841EPSS
Exploits0References2
NVD
NVD
added 2021/10/06 10:15 a.m.20 views

CVE-2021-24019

An insufficient session expiration vulnerability CWE- 613 in FortiClientEMS versions 6.4.2 and below, 6.2.8 and below may allow an attacker to reuse the unexpired admin user session IDs to gain admin privileges, should the attacker be able to obtain that session ID via other, hypothetical attacks...

9.8CVSS0.03841EPSS
Exploits0References1
CVE
CVE
added 2021/10/06 9:41 a.m.69 views

CVE-2021-24019

FortiClientEMS has an insufficient session expiration vulnerability (CWE-613) that affects FortiClientEMS versions 6.4.2 and below and 6.2.8 and below. An attacker who can obtain an unexpired admin session ID may reuse it to gain admin privileges. Remediation involves applying the Fortinet fixes:...

9.8CVSS9.4AI score0.03841EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder