2 matches found
Improper Handling of Exceptional Conditions
Overview Affected versions of this package are vulnerable to Improper Handling of Exceptional Conditions in the token revocation process. An attacker can maintain unauthorized access by using a stolen access token that was issued with no expiration, as the token cannot be invalidated through...
CIRCUTOR Q-SMT 代码问题漏洞
CIRCUTOR Q-SMT is an industrial hardware device from CIRCUTOR, Inc. A code issue vulnerability exists in CIRCUTOR Q-SMT version 1.0.4, which stems from the use of tokens that do not have an expiration date, which allows an attacker to steal tokens and gain unrestricted access to a web application...