Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-613

CWE-613

Insufficient Session Expiration

Parent: CWE-672 - Operation on a Resource after Expiration or Release

According to WASC, "Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization."

533 vulnerabilities with CWE-613

CVE-2019-5647 MEDIUM

Rapid7 AppSpider < 3.8.213 - Insufficient Session Expiration in Chrome Plugin

CVE-2019-10229 HIGH

MailStore Server 9.x-11.x < 11.2.2 - Insufficient Session Expiration via Generic LDAP Authentication

CVE-2019-11106 MEDIUM

Intel CSME and TXE Firmware - Insufficient Session Expiration

CVE-2019-8803 HIGH

iPadOS < 13.2 - Insufficient Session Expiration

CVE-2019-12421 HIGH

Apache NiFi 1.0.0-1.9.2 - Insufficient Session Expiration via Logout

CVE-2019-8149 CRITICAL

Magento 2.2-2.2.9 and 2.3-2.3.2 - Insecure Session Management

CVE-2019-17375 HIGH

cPanel 81.9999.242-82.0.15 - Insufficient Session Expiration

CVE-2019-9269 HIGH

Android 10 - Local Permissions Bypass via Cached Linux User ID

CVE-2019-5531 MEDIUM

VMware ESXi and vCenter Server - Insufficient Session Expiration

CVE-2019-14826 MEDIUM

FreeIPA >= 4.5.0 - Insufficient Session Expiration

CVE-2019-16133 MEDIUM

Eteams OA <4.0.34 - Info Disclosure

CVE-2019-5638 HIGH

Rapid7 Nexpose <= 6.5.50 - Insufficient Session Expiration

CVE-2019-2386 HIGH

MongoDB Server <4.0.9, <3.6.13, <3.4.22 - Info Disclosure

CVE-2019-7280 HIGH

Prima Systems FlexAir <2.3.38 - Info Disclosure

CVE-2019-6584 HIGH

SIEMENS LOGO!8 - Privilege Escalation

CVE-2019-3790 MEDIUM

Pivotal Ops Manager Authenticated Session Fixation via Refresh Token Bypass

CVE-2019-7215 MEDIUM

Progress Sitefinity 10.1.6536 - Info Disclosure

CVE-2019-4072 MEDIUM

IBM Spectrum Control 5.2.1-5.2.17 - Insufficient Session Expiration

CVE-2019-1003049 HIGH

Jenkins < 2.164.1 and < 2.171 - Insufficient Session Expiration

CVE-2019-0015 MEDIUM

Junos OS on SRX Series Insufficient Session Expiration

CVE-2018-21018 CRITICAL

Mastodon < 2.6.3 - Insufficient Session Expiration

CVE-2018-6634 CRITICAL

Parsec Windows 142-0 and Linux Ubuntu 16.04 LTS Desktop Build 142-1 - Insufficient Session Expiration

CVE-2018-1000814 MEDIUM

aio-libs aiohttp-session <=2.6.0 - Non-Expiring Sessions

CVE-2018-1127 MEDIUM

Red Hat Gluster Storage <3.4.0 - Info Disclosure

CVE-2018-2451 MEDIUM

SAP HANA Extended Application Services - Insufficient Session Expiration

Previous Page 20 of 22 Next

Details

Vulnerabilities 533

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy