Vulnerabilities > CVE-2023-40732 - Unspecified vulnerability in Siemens QMS Automotive 12.30
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
A vulnerability has been identified in QMS Automotive (All versions < V12.39). The QMS.Mobile module of the affected application does not invalidate the session token on logout. This could allow an attacker to perform session hijacking attacks.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |