Uploaded image for project: 'Crowd Data Center'
  1. Crowd Data Center
  2. CWD-5361

Insufficient Session Expiration of user sessions - CVE-2018-20238

XMLWordPrintable

      Various rest resources in Atlassian Crowd before version 3.2.7 and from version 3.3.0 before version 3.3.4 allow remote attackers to authenticate using an expired user session via an insufficient session expiration vulnerability.

              Unassigned Unassigned
              security-metrics-bot Security Metrics Bot
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: