| Max CVSS | 3.7 | Min CVSS | 3.7 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-3359 | 3.7 |
Luci in Red Hat Conga stores the user's username and password in a Base64 encoded string in the __ac session cookie, which allows attackers to gain privileges by accessing this cookie. NOTE: this issue has been SPLIT due to different vulnerability ty
|
13-02-2023 - 00:25 | 31-03-2014 - 14:58 | |
| CVE-2013-7347 | 3.7 |
Luci in Red Hat Conga does not properly enforce the user session timeout, which might allow attackers to gain access to the session by reading the __ac session cookie. NOTE: this issue has been SPLIT due to different vulnerability types. Use CVE-201
|
31-03-2014 - 18:23 | 31-03-2014 - 14:58 |