CVE-2022-2888
Insufficient Session Expiration in pypi/OctoPrint
Identifiers
CVE-2022-2888
Package Slug
pypi/OctoPrint
Vulnerability
Insufficient Session Expiration
Description
If an attacker comes into the possession of a victim's OctoPrint session cookie through whatever means, the attacker can use this cookie to authenticate as long as the victim's account exists.
Affected Versions
All versions before 1.8.3
Solution
Upgrade to version 1.8.3 or above.
Last Modified
2022-09-23
| source |