Lucene search
China National Vulnerability DatabaseCNVD-2023-22649HistoryNov 21, 2022 - 12:00 a.m.
Simmeth System Supplier Manager Session Management Error Vulnerability
2022-11-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
3
simmeth system
supplier manager
germany
session management
vulnerability
local storage
attacker
re-login
software
supply chain
0.002 Low
EPSS
Percentile
55.6%
Simmeth System Supplier Manager, a supply chain software from Simmeth System, Germany, is vulnerable to a session management error in versions prior to Simmeth System Supplier Manager 5.6. The vulnerability stems from credentials not being cleared from local storage after logging out, which could be exploited by an attacker to vulnerability can be exploited to re-login to the victim’s account after the victim has logged out.
| CPE | Name | Operator | Version |
|---|---|---|---|
| simmeth system supplier manager | lt | 5.6 |
Related
cve
cve
CVE-2022-44017
2022-12-25 05:15:10
prion
prion
Code injection
2022-12-25 05:15:00
cvelist
cvelist
CVE-2022-44017
2022-12-25 00:00:00
nvd
nvd
CVE-2022-44017
2022-12-25 05:15:10
zdt
zdt
packetstorm
packetstorm
Simmeth System GmbH Supplier Manager LFI / SQL Injection / Bypass
2022-11-15 00:00:00