VYPR
Critical severity9.8NVD Advisory· Published Mar 15, 2021· Updated Jun 17, 2026

CVE-2020-35358

CVE-2020-35358

Description

DomainMOD domainmod-v4.15.0 is affected by an insufficient session expiration vulnerability. On changing a password, both sessions using the changed password and old sessions in any other browser or device do not expire and remain active. Such flaws frequently give attackers unauthorized access to some system data or functionality.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.