Security Advisory

CVE-2021-37156

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-05 20:36:35

Last updated 2024-08-04 01:16:02

Assigner mitre

State PUBLISHED

Description

Redmine 4.2.0 and 4.2.1 allow existing user sessions to continue upon enabling two-factor authentication for the users account, but the intended behavior is for those sessions to be terminated.

← Browse all CVEs View on cve.org ↗