Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in QMS Automotive (All versions < V12.39). The QMS.Mobile module of the affected application does not invalidate the session token on logout. This could allow an attacker to perform session hijacking attacks.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
不充分的会话过期机制
Vulnerability Title
Siemens QMS Automotive 代码问题漏洞
Vulnerability Description
Siemens QMS Automotive是德国西门子(Siemens)公司的一个汽车行业的质量管理系统。 Siemens QMS Automotive V12.39版本存在代码问题漏洞,该漏洞源于受影响应用程序的 QMS.Mobile 模块不会在注销时使会话令牌失效。
CVSS Information
N/A
Vulnerability Type
N/A