Lucene search
K

11 matches found

OSV
OSV
added 6 days ago5 views

PYSEC-2026-360 Session Fixation in ipsilon

A vulnerability in ipsilon 2.0 before 2.0.2, 1.2 before 1.2.1, 1.1 before 1.1.2, and 1.0 before 1.0.3 was found that allows attacker to log out active sessions of other users. This issue is related to how it tracks sessions, and allows an unauthenticated attacker to view and terminate active...

9.1CVSS5.7AI score0.02119EPSS
Exploits0References17
RedhatCVE
RedhatCVE
added 2026/06/05 7:26 p.m.10 views

CVE-2026-40136

SAP Financial Consolidation allows an authenticated attacker to disconnect other users by terminating their sessions temporarily preventing access. However, the application itself cannot be compromised resulting in a low impact on availability. There is no impact on confidentiality and integrity ...

4.3CVSS5.4AI score0.0029EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.10 views

SAP Financial Consolidation 安全漏洞

SAP Financial Consolidation is a financial reporting solution developed by the German company SAP. This product is primarily used for automating intercompany reconciliations and eliminations, currency conversions, and generating financial reports. There is a security vulnerability in SAP Financia...

4.3CVSS5.8AI score0.0029EPSS
Exploits0References1
Snyk
Snyk
added 2026/04/29 9:56 p.m.8 views

Improper Verification of Cryptographic Signature

Overview admidio/admidio is a free open source user management system for websites of organizations and groups. Affected versions of this package are vulnerable to Improper Verification of Cryptographic Signature due to improper validation of SAML signatures in the authentication and logout...

8.8CVSS5.8AI score0.00191EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/04/20 12:59 p.m.10 views

kernel: iscsi: unrestricted access to sessions and handles

A flaw was found in the way access to sessions and handles was handled in the iSCSI driver in the Linux kernel. A local user could use this flaw to leak iSCSI transport handle kernel address or end arbitrary iSCSI connections on the system...

4.4CVSS6.8AI score0.00711EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/04/06 12:39 p.m.13 views

kernel: iscsi: unrestricted access to sessions and handles

A flaw was found in the way access to sessions and handles was handled in the iSCSI driver in the Linux kernel. A local user could use this flaw to leak iSCSI transport handle kernel address or end arbitrary iSCSI connections on the system...

4.4CVSS6.8AI score0.00711EPSS
Exploits1References5
CNNVD
CNNVD
added 2021/03/09 12:0 a.m.11 views

Siemens SIMATIC MV400 安全漏洞

Siemens SIMATIC MV400 is an industrial device from Siemens Germany. It is used for optical identification. An unspecified vulnerability exists in the Siemens SIMATIC MV400 series TCP protocol stack. An attacker can exploit this vulnerability to terminate arbitrary TCP sessions...

7.5CVSS5.8AI score0.01032EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/02/09 12:0 a.m.6 views

PT-2021-2300 · Adobe · Magento

Name of the Vulnerable Software and Affected Versions: Magento versions 2.4.1 and earlier Magento versions 2.4.0-p1 and earlier Magento versions 2.3.6 and earlier Description: The issue is related to the lack of automatic termination of all sessions after a password change, which could allow a...

7.5CVSS5.9AI score0.01673EPSS
Exploits0References9
OSV
OSV
added 2019/02/06 5:36 p.m.4 views

DRUPAL-CONTRIB-2019-013

This module provides a field on user profiles which allows users to get a notification when their account logs in to the site. The notification e-mail includes a link which will terminate all sessions for that user. This is useful in the case of unauthorised access to the account. The module...

6.7AI score
Exploits0References1
OSV
OSV
added 2017/07/12 1:29 p.m.2 views

CVE-2016-8638

A vulnerability in ipsilon 2.0 before 2.0.2, 1.2 before 1.2.1, 1.1 before 1.1.2, and 1.0 before 1.0.3 was found that allows attacker to log out active sessions of other users. This issue is related to how it tracks sessions, and allows an unauthenticated attacker to view and terminate active...

9.1CVSS5.8AI score0.02119EPSS
Exploits0References6
securityvulns
securityvulns
added 2004/04/21 12:0 a.m.155 views

US-CERT Technical Cyber Security Alert TA04-111A -- Vulnerabilities in TCP

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Technical Cyber Security Alert TA04-111A archive Vulnerabilities in TCP Original release date: April 20, 2004 Last revised: -- Source: US-CERT Systems Affected Systems that rely on persistent TCP connections, for example routers supporting BGP Overvie...

5CVSS0.1AI score0.80855EPSS
Exploits3
Rows per page
Query Builder