CVE-2025-10223

Name of the Vulnerable Software and Affected Versions: AxxonSoft Axxon One versions prior to 2.0.3

Description: Insufficient session expiration in the Web Admin Panel allows a local or remote authenticated attacker to retain access with removed privileges via continued use of an unexpired session token until natural expiration.

Recommendations: Update to version 2.0.3 or later.