CWE-539
3 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-539page 1 of 1
- CVE-2021-27463MEDIUMCVSS 5.3EG 5.32021-05-20
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected applications utilize persistent cookies where the session cookie attribute is not properly invalidated, allowing an attacker to i…
- CVE-2023-30861HIGHCVSS 7.5EG 7.52023-05-02
Flask is a lightweight WSGI web application framework. When all of the following conditions are met, a response containing data intended for one client may be cached and subsequently sent by the proxy to other clients. If the proxy also ca…
- CVE-2024-39275HIGHCVSS 8.0EG 8.02024-09-27
Cookies of authenticated Advantech ADAM-5630 users remain as active valid cookies when a session is closed. Forging requests with a legitimate cookie, even if the session was terminated, allows an unauthorized attacker to act with the s…
Map vulnerabilities like CWE-539 to your infrastructure
EchelonGraph correlates every CVE — across CWE-539 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →