Fallos del tipo CWE-613
394 resultadosCVE-2022-31145MEDIUMInsufficient AccessToken Expiration Check in FlyteAdminEPSS 0.8%CVE-2020-15218MEDIUMAdmin pages are cached and can be embeddedEPSS 0.8%CVE-2021-25985HIGHFactorJS - Insufficient Session Expiration Leads to a Local Account TakeoverEPSS 0.8%CVE-2020-1768MEDIUMExternal Interface does not invalidate sessionEPSS 0.7%CVE-2024-11208MEDIUMApereo CAS login session expirationEPSS 0.7%CVE-2022-33137—A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3), SIMATIC MV540 S (All versions < V3.3), SIMATIC MV550 H (All veEPSS 0.7%CVE-2024-27782HIGHMultiple insufficient session expiration weaknesses [CWE-613] vulnerability in Fortinet FortiAIOps 2.0.0 may allow an attacker to re-use stoEPSS 0.7%CVE-2024-35049CRITICALSurveyKing v1.3.1 was discovered to keep users' sessions active after logout. Related to an incomplete fix for CVE-2022-25590.EPSS 0.7%CVE-2023-22732LOWInsufficient Session Expiration in Administration in shopwareEPSS 0.7%CVE-2022-2306HIGHInsufficient Session Expiration in heroiclabs/nakamaEPSS 0.7%CVE-2022-37186MEDIUMIn LemonLDAP::NG before 2.0.15. some sessions are not deleted when they are supposed to be deleted according to the timeoutActivity setting.EPSS 0.7%CVE-2021-37866MEDIUMSession is not invalidated on server-side when user logged out of BoardsEPSS 0.7%CVE-2023-38489HIGHKirby vulnerable to Insufficient Session Expiration after a password changeEPSS 0.7%CVE-2023-36252—An issue in Ateme Flamingo XL v.3.6.20 and XS v.3.6.5 allows a remote authenticated attacker to execute arbitrary code and cause a denial ofEPSS 0.7%CVE-2026-26342HIGHTattile Smart+ / Vega / Basic <= 1.181.5 Insufficient Session Token ExpirationEPSS 0.7%CVE-2024-21492MEDIUMAll versions of the package github.com/greenpau/caddy-security are vulnerable to Insufficient Session Expiration due to improper user sessioEPSS 0.7%CVE-2024-35050HIGHAn issue in SurveyKing v1.3.1 allows attackers to escalate privileges via re-using the session ID of a user that was deleted by an Admin.EPSS 0.7%CVE-2020-15220MEDIUMSession fixationEPSS 0.7%CVE-2025-28059HIGHAn access control vulnerability in Nagios Network Analyzer 2024R1.0.3 allows deleted users to retain access to system resources due to improEPSS 0.7%CVE-2022-43844HIGHIBM Robotic Process Automation for Cloud Pak session fixationEPSS 0.7%