Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2020-5774

Nessus versions 8.11.0 and earlier were found to maintain sessions longer than the permitted period in certain scenarios. The lack of proper session expiration could allow attackers with local access to login into an existing browser session.

  • Published: Aug 21, 2020
  • Updated: Apr 14, 2023
  • CVE: CVE-2020-5774
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.1
  • AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

CVSS v2:

  • Severity: Low
  • Score: 3.6
  • AV:L/AC:L/Au:N/C:P/I:P/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
tenable / nessus - 8.11.0.x