Vulnerabilities > CVE-2021-27751 - Insufficient Session Expiration vulnerability in Hcltechsw HCL Commerce
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
LOW Integrity impact
NONE Availability impact
NONE Summary
HCL Commerce is affected by an Insufficient Session Expiration vulnerability. After the session expires, in some circumstances, parts of the application are still accessible.