Vulnerabilities > Insufficient Session Expiration

DATE CVE VULNERABILITY TITLE RISK
2023-12-18 CVE-2023-4320 Insufficient Session Expiration vulnerability in Redhat Satellite
An arithmetic overflow flaw was found in Satellite when creating a new personal access token.
network
low complexity
redhat CWE-613
7.5
2023-12-14 CVE-2023-49935 Insufficient Session Expiration vulnerability in Schedmd Slurm
An issue was discovered in SchedMD Slurm 23.02.x and 23.11.x.
network
low complexity
schedmd CWE-613
8.8
2023-11-30 CVE-2023-46326 Insufficient Session Expiration vulnerability in Zstack
ZStack Cloud version 3.10.38 and before allows unauthenticated API access to the list of active job UUIDs and the session ID for each of these.
network
low complexity
zstack CWE-613
8.8
2023-11-29 CVE-2023-49091 Insufficient Session Expiration vulnerability in Cosmos-Cloud Cosmos Server
Cosmos provides users the ability self-host a home server by acting as a secure gateway to your application, as well as a server manager.
network
low complexity
cosmos-cloud CWE-613
critical
9.8
2023-11-14 CVE-2023-47628 Insufficient Session Expiration vulnerability in Datahub Project Datahub
DataHub is an open-source metadata platform.
network
high complexity
datahub-project CWE-613
4.8
2023-11-01 CVE-2023-5889 Insufficient Session Expiration vulnerability in PKP web Application Library
Insufficient Session Expiration in GitHub repository pkp/pkp-lib prior to 3.3.0-16.
network
low complexity
pkp CWE-613
8.2
2023-10-31 CVE-2023-39695 Insufficient Session Expiration vulnerability in Elenos Etg150 Firmware 3.12
Insufficient session expiration in Elenos ETG150 FM Transmitter v3.12 allows attackers to arbitrarily change transmitter configuration and data after logging out.
network
low complexity
elenos CWE-613
5.3
2023-10-31 CVE-2023-5865 Insufficient Session Expiration vulnerability in PHPmyfaq
Insufficient Session Expiration in GitHub repository thorsten/phpmyfaq prior to 3.2.2.
network
low complexity
phpmyfaq CWE-613
critical
9.8
2023-10-29 CVE-2023-5838 Insufficient Session Expiration vulnerability in Linkstack
Insufficient Session Expiration in GitHub repository linkstackorg/linkstack prior to v4.2.9.
network
low complexity
linkstack CWE-613
critical
9.8
2023-10-25 CVE-2023-46158 Insufficient Session Expiration vulnerability in IBM Websphere Application Server Liberty
IBM WebSphere Application Server Liberty 23.0.0.9 through 23.0.0.10 could provide weaker than expected security due to improper resource expiration handling.
network
low complexity
ibm CWE-613
critical
9.8