Security Advisory

CVE-2019-3790

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-06-06 19:16:16

Last updated 2024-09-16 22:20:48

Assigner dell

State PUBLISHED

Description

The Pivotal Ops Manager, 2.2.x versions prior to 2.2.23, 2.3.x versions prior to 2.3.16, 2.4.x versions prior to 2.4.11, and 2.5.x versions prior to 2.5.3, contain configuration that circumvents refresh token expiration. A remote authenticated user can gain access to a browser session that was supposed to have expired, and access Ops Manager resources.

← Browse all CVEs View on cve.org ↗