A flaw was found in FreeIPA versions 4.5.0 and later. Session cookies were retained in the cache after logout. An attacker could abuse this flaw if they obtain previously valid session cookies and can use this to gain access to the session.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2019-09-17T15:09:31
Updated: 2024-08-05T00:26:39.109Z
Reserved: 2019-08-10T00:00:00
Link: CVE-2019-14826
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-09-17T16:15:10.917
Modified: 2024-11-21T04:27:26.693
Link: CVE-2019-14826
Redhat