CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4 matches found

RedhatCVE•added 2026/01/09 12:16 p.m.•3 views

CVE-2018-1000814

aio-libs aiohttp-session version 2.6.0 and earlier contains a Other/Unknown vulnerability in EncryptedCookieStorage and NaClCookieStorage that can result in Non-expiring sessions / Infinite lifespan. This attack appear to be exploitable via Recreation of a cookie post-expiry with the same value...

6.5CVSS6.7AI score0.00241EPSS

Exploits1References1

Veracode•added 2018/12/21 4:31 a.m.•13 views

Non-expiring Infinite Sessions

aiohttpsession has non-expiring infinite sessions. The cause of the vulnerability is due to lack of inherent data expiration in EncryptedCookieStorage and NaClCookieStorage...

6.5CVSS6.3AI score0.00241EPSS

Exploits1References2Affected Software1

OSV•added 2018/12/20 3:29 p.m.•13 views

CVE-2018-1000814

aio-libs aiohttp-session version 2.6.0 and earlier contains a Other/Unknown vulnerability in EncryptedCookieStorage and NaClCookieStorage that can result in Non-expiring sessions / Infinite lifespan. This attack appear to be exploitable via Recreation of a cookie post-expiry with the same value...

6.5CVSS6.4AI score

Exploits0References2

Cvelist•added 2018/12/20 3:0 p.m.•13 views

CVE-2018-1000814

aio-libs aiohttp-session version 2.6.0 and earlier contains a Other/Unknown vulnerability in EncryptedCookieStorage and NaClCookieStorage that can result in Non-expiring sessions / Infinite lifespan. This attack appear to be exploitable via Recreation of a cookie post-expiry with the same value...

6.3AI score0.00241EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by