Sametime is impacted by a failure to invalidate sessions. The application is setting sensitive cookie values in a persistent manner in Sametime Web clients. When this happens, cookie values can remain valid even after a user has closed out their session.  
History

Thu, 05 Sep 2024 13:30:00 +0000

Type Values Removed Values Added
First Time appeared Hcltech
Hcltech sametime
Weaknesses CWE-384
CPEs cpe:2.3:a:hcltech:sametime:*:*:*:*:*:*:*:*
Vendors & Products Hcltech
Hcltech sametime

cve-icon MITRE

Status: PUBLISHED

Assigner: HCL

Published: 2024-02-09T21:22:09.163Z

Updated: 2024-08-02T20:29:31.597Z

Reserved: 2023-10-10T21:26:10.163Z

Link: CVE-2023-45718

cve-icon Vulnrichment

Updated: 2024-08-02T20:29:31.597Z

cve-icon NVD

Status : Modified

Published: 2024-02-09T22:15:08.167

Modified: 2024-11-21T08:27:15.520

Link: CVE-2023-45718

cve-icon Redhat

No data.