Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-613

CWE-613

Insufficient Session Expiration

Parent: CWE-672 - Operation on a Resource after Expiration or Release

According to WASC, "Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization."

533 vulnerabilities with CWE-613

CVE-2020-17473 MEDIUM

ZKTeco FaceDepot <7B - Info Disclosure

CVE-2020-1776 LOW

((OTRS)) <6.0.28-8.0.4 - Info Disclosure

CVE-2020-15074 HIGH

OpenVPN Access Server <2.8.4, 2.9.5 - Auth Bypass

CVE-2020-6292 HIGH

SAP Disclosure Mgmt <10.1 - Info Disclosure

CVE-2020-6291 HIGH

SAP Disclosure Mgmt <10.1 - Insufficient Session Expiration

CVE-2020-6644 HIGH

FortiDeceptor < 3.0.0 - Insufficient Session Expiration

CVE-2020-1724 MEDIUM

Keycloak < 9.0.2 - Insufficient Session Expiration

CVE-2020-12690 HIGH

OpenStack Keystone <16.0.0 - Privilege Escalation

CVE-2020-3188 MEDIUM

Cisco Firepower Threat Defense - DoS

CVE-2020-10876 HIGH

OKLOK 3.1.1 - Insufficient Session Expiration via Verification Code Brute Force

CVE-2020-9482 MEDIUM

Apache NiFi Registry 0.1.0-0.5.0 - Insufficient Session Expiration

CVE-2020-1762 HIGH

Kiali 0.4.0-1.15.0 - Insufficient Session Expiration via JWT Validation Bypass

CVE-2020-8867 HIGH

OPC Foundation UA .NET Standard 1.04.358.30 - DoS

CVE-2020-11795 HIGH

JetBrains Space through 2020-04-22 - Insufficient Session Expiration

CVE-2020-11688 HIGH

JetBrains TeamCity < 2019.2.1 - Insufficient Session Expiration

CVE-2020-4284 MEDIUM

IBM Security Information Queue 1.0.0-1.0.5 - Information Disclosure via Insufficient Session Expiration

CVE-2020-4253 HIGH

IBM Content Navigator 3.0CD - Insufficient Session Expiration

CVE-2020-6197 LOW

SAP Enable Now <1908 - Info Disclosure

CVE-2020-1768 MEDIUM

OTRS 7.0.0-7.0.14 - Insufficient Session Expiration via Background Requests

CVE-2020-0621 MEDIUM

Windows 10 and Windows Server 2016/2019 - Security Feature Bypass via Third-Party Filter During Password Update

CVE-2019-5641 LOW

Rapid7 InsightVM < 6.6.160 - Information Exposure via Insufficient Session Expiration

CVE-2019-3867 MEDIUM

Red Hat Quay 2 and 3 - Insufficient Session Expiration

CVE-2019-19199 HIGH

REDDOXX MailDepot <2.2.1242 - Info Disclosure

CVE-2019-12001 MEDIUM

HPE MSA 1040/1050/2040/2042/2050/2052 < GL225P001 - Remote Session Reuse and Access Bypass

CVE-2019-5462 HIGH

GitLab 9.0.0-11.11.7 - Insufficient Session Expiration via Trigger Token Rotation

Previous Page 19 of 22 Next

Details

Vulnerabilities 533

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy