A CWE-613 “Insufficient Session Expiration” vulnerability in the web application, due to the session cookie “sessionid” lasting two weeks, facilitates session hijacking attacks against victims. This issue affects: AiLux imx6 bundle below version imx6_1.0.7-2.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Nozomi
Published: 2024-03-05T11:35:39.567Z
Updated: 2024-03-05T11:35:39.567Z
Reserved: 2023-10-09T08:26:54.317Z
Link: CVE-2023-45600
JSON object: View
NVD Information
Status : Awaiting Analysis
Published: 2024-03-05T12:15:47.613
Modified: 2024-03-05T13:41:01.900
Link: CVE-2023-45600
JSON object: View
Redhat Information
No data.
CWE