Medium severity6.5NVD Advisory· Published May 18, 2018· Updated Jun 17, 2026
CVE-2018-1148
CVE-2018-1148
Description
In Nessus before 7.1.0, Session Fixation exists due to insufficient session management within the application. An authenticated attacker could maintain system access due to session fixation after a user password change.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Tenable/Tenable Nessusv5Range: All versions prior to 7.1.0
Patches
Vulnerability mechanics
References
2- www.securitytracker.com/id/1040918nvdThird Party AdvisoryVDB Entry
- www.tenable.com/security/tns-2018-05nvdVendor Advisory
News mentions
0No linked articles in our index yet.