Immuta v2.8.2 is affected by improper session management: user sessions are not revoked upon logout.
References
Link | Resource |
---|---|
https://labs.bishopfox.com/advisories | Exploit Third Party Advisory |
https://labs.bishopfox.com/advisories/immuta-version-2.8.2 | Release Notes Third Party Advisory |
https://www.immuta.com/ | Product |
https://labs.bishopfox.com/advisories | Exploit Third Party Advisory |
https://labs.bishopfox.com/advisories/immuta-version-2.8.2 | Release Notes Third Party Advisory |
https://www.immuta.com/ | Product |
Configurations
History
21 Nov 2024, 05:06
Type | Values Removed | Values Added |
---|---|---|
References | () https://labs.bishopfox.com/advisories - Exploit, Third Party Advisory | |
References | () https://labs.bishopfox.com/advisories/immuta-version-2.8.2 - Release Notes, Third Party Advisory | |
References | () https://www.immuta.com/ - Product |
Information
Published : 2020-11-05 15:15
Updated : 2024-11-21 05:06
NVD link : CVE-2020-15950
Mitre link : CVE-2020-15950
CVE.ORG link : CVE-2020-15950
JSON object : View
Products Affected
immuta
- immuta
CWE
CWE-613
Insufficient Session Expiration