Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2020-35358
HistoryMar 15, 2021 - 12:15 p.m.

CVE-2020-35358

2021-03-1512:15:12
Google
osv.dev
5
domainmod
v4.15.0
session expiration
vulnerability
password
unauthorized access

AI Score

7

Confidence

Low

EPSS

0.005

Percentile

77.1%

JSON

DomainMOD domainmod-v4.15.0 is affected by an insufficient session expiration vulnerability. On changing a password, both sessions using the changed password and old sessions in any other browser or device do not expire and remain active. Such flaws frequently give attackers unauthorized access to some system data or functionality.

Related

cve 1
nvd 1
prion 1
openvas 1
cvelist 1
cve
cve
CVE-2020-35358
2021-03-15 12:15:12
nvd
nvd
CVE-2020-35358
2021-03-15 12:15:12
prion
prion
Session fixation
2021-03-15 12:15:00
openvas
openvas
DomainMOD < 4.18.0 Session Expiration Vulnerability
2021-03-16 00:00:00
cvelist
cvelist
CVE-2020-35358
2021-03-15 11:55:53

AI Score

7

Confidence

Low

EPSS

0.005

Percentile

77.1%

JSON
Related for OSV:CVE-2020-35358
cve1nvd1prion1openvas1cvelist1