Lucene search
+L

7 matches found

redhatcve
redhatcve
added 2025/05/22 6:57 p.m.24 views

CVE-2021-26921

In util/session/sessionmanager.go in Argo CD before 1.8.4, tokens continue to work even when the user account is disabled...

6.5CVSS6.7AI score0.01271EPSS
Exploits0References1
nvd
nvd
added 2024/11/12 1:15 p.m.17 views

CVE-2024-46892

A vulnerability has been identified in SINEC INS All versions V1.0 SP2 Update 3. The affected application does not properly invalidate sessions when the associated user is deleted or disabled or their permissions are modified. This could allow an authenticated attacker to continue performing...

8.1CVSS0.00292EPSS
Exploits0References1
cve
cve
added 2024/11/12 12:49 p.m.63 views

CVE-2024-46892

CVE-2024-46892 affects Siemens SINEC INS (versions earlier than V1.0 SP2 Update 3). The issue is improper session invalidation: when a user is deleted, disabled, or has permissions changed, the system may allow the attacker’s authenticated session to remain active and perform actions post-change....

8.1CVSS6.6AI score0.00292EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2024/11/12 12:49 p.m.18 views

CVE-2024-46892

A vulnerability has been identified in SINEC INS All versions V1.0 SP2 Update 3. The affected application does not properly invalidate sessions when the associated user is deleted or disabled or their permissions are modified. This could allow an authenticated attacker to continue performing...

6.9CVSS0.00292EPSS
Exploits0References1
nvd
nvd
added 2021/02/09 3:15 p.m.36 views

CVE-2021-26921

In util/session/sessionmanager.go in Argo CD before 1.8.4, tokens continue to work even when the user account is disabled...

6.5CVSS0.01271EPSS
Exploits0References3
prion
prion
added 2021/02/09 3:15 p.m.19 views

Code injection

In util/session/sessionmanager.go in Argo CD before 1.8.4, tokens continue to work even when the user account is disabled...

5CVSS6.4AI score0.01271EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2021/02/09 2:8 p.m.35 views

CVE-2021-26921

In util/session/sessionmanager.go in Argo CD before 1.8.4, tokens continue to work even when the user account is disabled...

6.6AI score0.01271EPSS
Exploits0References3
Rows per page
Query Builder