Vulnerabilities > CVE-2021-27751 - Insufficient Session Expiration vulnerability in Hcltechsw HCL Commerce

047910
CVSS 1.9 - LOW
Attack vector
LOCAL
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE

Summary

HCL Commerce is affected by an Insufficient Session Expiration vulnerability. After the session expires, in some circumstances, parts of the application are still accessible.

Common Weakness Enumeration (CWE)