CVE-2015-0993

Name of the Vulnerable Software and Affected Versions Inductive Automation Ignition version 7.7.2

Description The issue allows remote attackers to bypass intended access restrictions by leveraging an unattended workstation, as the session is not terminated upon a logout action.

Recommendations For Inductive Automation Ignition version 7.7.2, consider implementing a custom session termination mechanism to ensure that sessions are properly closed after a logout action, or restrict access to workstations to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.