PT-2020-18695 · Tenable · Nessus
Nyxgeek
·
Published
2020-08-21
·
Updated
2020-08-28
·
CVE-2020-5774
CVSS v3.1
7.1
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Nessus versions 8.11.0 and earlier
Description
The issue is related to improper session expiration, which could allow attackers with local access to login into an existing browser session.
Recommendations
For versions 8.11.0 and earlier, update to a version that properly expires sessions to prevent unauthorized access.
Fix
Insufficient Session Expiration
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Nessus