CVE-2024-23586

HCL Nomad is susceptible to an insufficient session expiration vulnerability.   Under certain circumstances, an unauthenticated attacker could obtain old session information.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:hcltech:hcl_nomad:*:*:*:*:*:-:*:*
cpe:2.3:a:hcltech:domino:-:*:*:*:*:*:*:*

History

07 Oct 2024, 15:30

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 5.3
v2 : unknown
v3 : 7.5
First Time Hcltech
Hcltech domino
Hcltech hcl Nomad
References () https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0115264 - () https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0115264 - Vendor Advisory
CPE cpe:2.3:a:hcltech:domino:-:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:hcl_nomad:*:*:*:*:*:-:*:*

30 Sep 2024, 12:45

Type Values Removed Values Added
Summary
  • (es) HCL Nomad es susceptible a una vulnerabilidad de expiración de sesión insuficiente. En determinadas circunstancias, un atacante no autenticado podría obtener información de sesiones antiguas.

27 Sep 2024, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-27 22:15

Updated : 2024-10-07 15:30


NVD link : CVE-2024-23586

Mitre link : CVE-2024-23586

CVE.ORG link : CVE-2024-23586


JSON object : View

Products Affected

hcltech

  • domino
  • hcl_nomad
CWE
CWE-613

Insufficient Session Expiration