Fallos del tipo CWE-613
394 resultadosCVE-2024-55603MEDIUMInsufficient session invalidation in KanboardEPSS 0.5%CVE-2024-29402MEDIUMcskefu v7 suffers from Insufficient Session Expiration, which allows attackers to exploit the old session for malicious activity.EPSS 0.5%CVE-2025-4643MEDIUMLack of JWT Expiration after Log Out in PayloadCMSEPSS 0.5%CVE-2023-40025MEDIUMArgo CD web terminal session doesn't expireEPSS 0.5%CVE-2023-4126MEDIUMInsufficient Session Expiration in answerdev/answerEPSS 0.5%CVE-2024-0350LOWSourceCodester Engineers Online Portal session expirationEPSS 0.5%CVE-2024-27779MEDIUMAn insufficient session expiration vulnerability [CWE-613] in FortiSandbox FortiSandbox version 4.4.4 and below, version 4.2.6 and below, 4.EPSS 0.5%CVE-2024-45187HIGHMage AI allows deleted users to use the terminal server with admin access, leading to remote code executionEPSS 0.5%CVE-2022-24744LOWInsufficient Session Expiration in shopwareEPSS 0.5%CVE-2022-3867LOWNomad Event Stream Subscriber Using a Token with TTL Receives Updates Until Garbage CollectedEPSS 0.5%CVE-2024-52311MEDIUMdata.all does not invalidate authentication token upon user logoutEPSS 0.5%CVE-2026-24472MEDIUMHono cache middleware ignores "Cache-Control: private" leading to Web Cache DeceptionEPSS 0.5%CVE-2023-40537HIGHMulti-blade VIPRION Configuration utility session cookie vulnerabilityEPSS 0.5%CVE-2022-48317MEDIUMInsecure Termination of RestAPI Session TokensEPSS 0.5%CVE-2023-46158MEDIUMIBM WebSphere Application Server session fixationEPSS 0.5%CVE-2023-0041MEDIUMIBM Security Guardium session fixationEPSS 0.5%CVE-2024-22403LOWOAuth2 authorization codes are valid indefinetly in Nextcloud serverEPSS 0.5%CVE-2024-34709MEDIUMDirectus Lacks Session Tokens InvalidationEPSS 0.4%CVE-2025-49152HIGHInsufficient Session Expiration in MICROSENS NMP Web+EPSS 0.4%CVE-2024-35220HIGH@fastify/session reuses destroyed session cookieEPSS 0.4%