Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Insufficient Session Expiration in TopEase
Vulnerability Description
An insufficient session expiration vulnerability exists in Business-DNA Solutions GmbH’s TopEase® Platform Version <= 7.1.27, which allows a remote attacker to reuse, spoof, or steal other user and admin sessions.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
Vulnerability Type
不充分的会话过期机制
Vulnerability Title
Business-Dna Solution GmbH TopEase 代码问题漏洞
Vulnerability Description
Business-Dna Solution GmbH TopEase是瑞士Business-Dna Solution GmbH公司的一种“转型风险”解决方案。用于全面、简单、快速和安全地管理复杂的项目和措施。 TopEase 存在代码问题漏洞,该漏洞源于Business-DNA Solutions GmbH 的 TopEase 平台版本 <= 7.1.27 中存在会话过期不足漏洞。攻击者可利用该漏洞重用、欺骗或窃取其他用户和管理员会话。
CVSS Information
N/A
Vulnerability Type
N/A