3 matches found
CVE-2022-2713
Insufficient Session Expiration in GitHub repository cockpit-hq/cockpit prior to 2.2.0...
CVE-2022-2713 Insufficient Session Expiration in cockpit-hq/cockpit
Insufficient Session Expiration in GitHub repository cockpit-hq/cockpit prior to 2.2.0...
CVE-2022-2713
Cockpit (cockpit-hq/cockpit) before version 2.2.0 is vulnerable to Insufficient Session Expiration. Multiple connected sources describe an access control/session handling issue where expired sessions can be exploited, potentially allowing an attacker to take control of an account. Root cause cite...