Flo354

**Name of the Vulnerable Software and Affected Versions** Gatling Enterprise versions prior to 1.25.0 **Description** A user logging out of Gatling Enterprise may still be able to use their session token to continue accessing the application without session expiration. This is due to incorrect session management. **Recommendations** Update Gatling Enterprise to version 1.25.0 or later.

**Name of the Vulnerable Software and Affected Versions** Gatling Enterprise versions prior to 1.25.0 **Description** Gatling Enterprise is susceptible to an issue where a user with limited privileges, lacking the “admin” role, can execute REST API calls on read-only endpoints. This allows unauthorized collection of information due to insufficient authorization checks. **Recommendations** Update Gatling Enterprise to version 1.25.0 or later.