公告ID: KYLIN-2019-14826
安全等级: 低级
产品: Kylin V3
发布日期: 2019年9月17日
CVE: CVE-2019-14826
CVSS3评分: 4.0
概述:
Kylin Enterprise Linux 7: This vulnerability is currently targeted to be addressed in an upcoming release. Kylin Enterprise Linux 8: This vulnerability is currently targeted to be addressed in an upcoming release. 描述:
A flaw was found in FreeIPA versions 4.5.0 and later. Session cookies were retained in the cache after logout. An attacker could abuse this flaw if they obtain previously valid session cookies and can use this to gain access to the session. A flaw was found in FreeIPA versions 4.5.0 and later. Session cookies were retained in the cache after logout. An attacker could abuse this flaw if they obtain previously valid session cookies and can use this to gain access to the session. 系统版本:
KYLIN 3.3.x
KYLIN 3.4.x
受影响包列表:
ipa
idm:DL1/ipa