Vulnerabilities > Insufficient Session Expiration
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-01 | CVE-2022-30699 | Insufficient Session Expiration vulnerability in multiple products NLnet Labs Unbound, up to and including version 1.16.1, is vulnerable to a novel type of the "ghost domain names" attack. | 6.5 |
| 2022-07-13 | CVE-2022-31145 | Insufficient Session Expiration vulnerability in Flyte Flyteadmin FlyteAdmin is the control plane for Flyte responsible for managing entities and administering workflow executions. | 6.5 |
| 2022-07-12 | CVE-2022-33137 | Insufficient Session Expiration vulnerability in Siemens products A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3), SIMATIC MV540 S (All versions < V3.3), SIMATIC MV550 H (All versions < V3.3), SIMATIC MV550 S (All versions < V3.3), SIMATIC MV560 U (All versions < V3.3), SIMATIC MV560 X (All versions < V3.3). | 8.0 |
| 2022-07-05 | CVE-2022-2306 | Insufficient Session Expiration vulnerability in Heroiclabs Nakama Old session tokens can be used to authenticate to the application and send authenticated requests. | 7.5 |
| 2022-06-20 | CVE-2022-22317 | Insufficient Session Expiration vulnerability in IBM Curam Social Program Management 8.0.0/8.0.1 IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. | 9.8 |
| 2022-06-20 | CVE-2022-22318 | Insufficient Session Expiration vulnerability in IBM Curam Social Program Management 8.0.0/8.0.1 IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. | 9.8 |
| 2022-06-14 | CVE-2022-31050 | Insufficient Session Expiration vulnerability in Typo3 TYPO3 is an open source web content management system. | 7.2 |
| 2022-06-13 | CVE-2022-2064 | Insufficient Session Expiration vulnerability in Xgenecloud Nocodb Insufficient Session Expiration in GitHub repository nocodb/nocodb prior to 0.91.7+. | 8.8 |
| 2022-06-02 | CVE-2022-30277 | Insufficient Session Expiration vulnerability in BD Synapsys 4.20/4.30 BD Synapsys™, versions 4.20, 4.20 SR1, and 4.30, contain an insufficient session expiration vulnerability. | 5.7 |
| 2022-05-17 | CVE-2022-23669 | Insufficient Session Expiration vulnerability in Arubanetworks Clearpass Policy Manager A remote authorization bypass vulnerability was discovered in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. | 8.8 |