Lucene search
Veracode Vulnerability DatabaseVERACODE:37249HistorySep 23, 2022 - 8:33 a.m.
Insufficient Session Expiration
2022-09-2308:33:47
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
octoprint security vulnerability sessionexpiration software
EPSS
0
Percentile
12.8%
octoprint is vulnerable to insecure insufficient session expiration. The vulnerability exists because the session expiration is not properly handled in find_user function in users.py which allows an attacker to use old session credentials or session IDs for authorization.
Related
huntr
huntr
Insufficient Session Expiration
2022-08-16 08:12:42
osv
osv
OctoPrint vulnerable to Insufficient Session Expiration.
2022-09-22 00:00:31
PYSEC-2022-282
2022-09-21 12:15:00
CVE-2022-2888
2022-09-21 12:15:09
cvelist
cvelist
CVE-2022-2888 Insufficient Session Expiration in octoprint/octoprint
2022-09-21 11:25:08
cve
cve
CVE-2022-2888
2022-09-21 12:15:09
nvd
nvd
CVE-2022-2888
2022-09-21 12:15:09
prion
prion
Code injection
2022-09-21 12:15:00
github
github
OctoPrint vulnerable to Insufficient Session Expiration.
2022-09-22 00:00:31