Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Improper Session Cleanup on Role Removal in Web Admin Panel in AxxonSoft Axxon One (C-Werk)
Vulnerability Description
Insufficient Session Expiration (CWE-613) in the Web Admin Panel in AxxonSoft Axxon One (C-Werk) prior to 2.0.3 on Windows allows a local or remote authenticated attacker to retain access with removed privileges via continued use of an unexpired session token until natural expiration.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Vulnerability Type
不充分的会话过期机制
Vulnerability Title
AxxonSoft AxxonOne 安全漏洞
Vulnerability Description
AxxonSoft AxxonOne是爱尔兰AxxonSoft公司的一款视频监控和安全管理软件。 AxxonSoft AxxonOne 2.0.3之前版本存在安全漏洞,该漏洞源于Web管理面板会话过期不足,可能导致权限保留。
CVSS Information
N/A
Vulnerability Type
N/A