Security Advisory

CVE-2013-4762

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-08-20 22:00:00

Last updated 2024-09-16 21:09:07

Assigner mitre

State PUBLISHED

Description

Puppet Enterprise before 3.0.1 does not sufficiently invalidate a session when a user logs out, which might allow remote attackers to hijack sessions by obtaining an old session ID.

← Browse all CVEs View on cve.org ↗