Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-613

CWE-613

Insufficient Session Expiration

Parent: CWE-672 - Operation on a Resource after Expiration or Release

According to WASC, "Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization."

532 vulnerabilities with CWE-613

CVE-2021-20431 MEDIUM

IBM i2 Analyst's Notebook Premium <9.2.2 - Info Disclosure

CVE-2021-20378 HIGH

IBM Guardium Data Encryption <4.0.0.4 - Privilege Escalation

CVE-2021-26037 MEDIUM

Joomla! 2.5.0-3.9.27 - Insufficient Session Expiration

CVE-2021-34428 LOW

Eclipse Jetty <= 9.4.40 - Insufficient Session Expiration via SessionListener Exception

CVE-2021-22221 MEDIUM

GitLab 12.9.0-13.10.4, 13.11.0-13.11.4, 13.12.0-13.12.1 - Insufficient Session Expiration

CVE-2021-32923 HIGH

HashiCorp Vault <1.5.9, <1.6.5, <1.7.2 - Info Disclosure

CVE-2021-22136 LOW

Kibana < 6.8.15 - Insufficient Session Expiration via Background Polling

CVE-2021-1501 HIGH

Cisco Firepower/ASA DoS via SIP Pinhole Connection Hash Lookup

CVE-2021-31408 MEDIUM

Vaadin Flow 5.0.0-5.9.9 and Vaadin 19.0.0-19.0.3 - Insufficient Session Expiration via Authentication.logout() Helper

CVE-2021-3144 CRITICAL

SaltStack Salt < 2015.8.10 - Insufficient Session Expiration

CVE-2021-27351 MEDIUM

Telegram <7.2.1-2.4.7 - Info Disclosure

CVE-2021-21032 MEDIUM

Magento <2.4.1, <2.4.0-p1, <2.3.6 - Info Disclosure

CVE-2021-21031 MEDIUM

Magento <2.4.1-2.3.6 - Info Disclosure

CVE-2021-26921 MEDIUM

Argo CD < 1.7.12 - Insufficient Session Expiration

CVE-2021-3311 CRITICAL

October < 1.0.471 - Insufficient Session Expiration via Session Reactivation

CVE-2021-3183 HIGH

Files.com Fat Client 3.3.6 - Insufficient Session Expiration

CVE-2020-4914 MEDIUM

IBM Cloud Pak System 2.3.3.0-2.3.3.5 - Insufficient Session Expiration

CVE-2020-27416 CRITICAL

Mahavitaran Android <7.50 - Privilege Escalation

CVE-2020-29012 MEDIUM

FortiSandbox < 3.2.2 - Insufficient Session Expiration

CVE-2020-10709 HIGH

Ansible Tower < 3.5.6 - Insufficient Session Expiration via OAuth2 Token

CVE-2020-35358 CRITICAL

DomainMOD 4.15.0 - Insufficient Session Expiration

CVE-2020-4995 MEDIUM

IBM Security Identity Governance and Intelligence 5.2.6 - Insufficient Session Expiration

CVE-2020-6649 CRITICAL

FortiIsolator < 2.0.1 - Insufficient Session Expiration

CVE-2020-14247 MEDIUM

HCL OneTest Performance V9.5 V10.0 V10.1 - Insufficient Session Expiration

CVE-2020-15220 MEDIUM

Combodo iTop <2.7.2, 3.0.0 - Info Disclosure

Previous Page 17 of 22 Next

Details

Vulnerabilities 532

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy