Vulnerabilities > Darwin > Factor > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-11-16 CVE-2021-25985 Insufficient Session Expiration vulnerability in Darwin Factor
In Factor (App Framework & Headless CMS) v1.0.4 to v1.8.30, improperly invalidate a user’s session even after the user logs out of the application.
network
low complexity
darwin CWE-613
critical
 9.8
9.8