Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Session Management Vulnerability
Vulnerability Description
The vulnerability in SolarWinds Pingdom can be described as a failure to invalidate user session upon password or email address change. When running multiple active sessions in separate browser windows, it was observed a password or email address change could be changed without terminating the user session. This issue has been resolved on September 13, 2021.
CVSS Information
CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
Solarwinds SolarWinds Pingdom 代码问题漏洞
Vulnerability Description
Solarwinds SolarWinds Pingdom是美国Solarwinds公司的一个完整的网站监控平台。用于测量其监控的网站的延迟。 solarwinds 多款产品存在安全漏洞。该漏洞源于在密码更改时无法使用户会话无效。在单独的浏览器窗口中运行多个活动会话时,可以观察到密码或电子邮件地址更改,而无需终止用户会话。
CVSS Information
N/A
Vulnerability Type
N/A