HCL Commerce is affected by an Insufficient Session Expiration vulnerability.

HCL Commerce is affected by an Insufficient Session Expiration vulnerability. After the session expires, in some circumstances, parts of the application are still accessible.