Security Advisory

CVE-2018-20238

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-02-13 18:00:00

Last updated 2024-09-16 20:41:48

Assigner atlassian

State PUBLISHED

Description

Various rest resources in Atlassian Crowd before version 3.2.7 and from version 3.3.0 before version 3.3.4 allow remote attackers to authenticate using an expired user session via an insufficient session expiration vulnerability.

← Browse all CVEs View on cve.org ↗