High severityNVD Advisory· Published Mar 30, 2022· Updated Aug 2, 2024
Old sessions are not blocked by the login enable function. in snipe/snipe-it
CVE-2022-1155
Description
Old sessions are not blocked by the login enable function. in GitHub repository snipe/snipe-it prior to 5.3.10.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
snipe/snipe-itPackagist | >= 6.0.0-RC-1, < 6.0.0-RC-6 | 6.0.0-RC-6 |
snipe/snipe-itPackagist | < 5.4.2 | 5.4.2 |
Affected products
2- Range: unspecified
Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-636j-7x7r-gvw2ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-1155ghsaADVISORY
- github.com/snipe/snipe-it/commit/bdabbbd4e98e88ee01e728ceb4fd512661fbd38dghsax_refsource_MISCWEB
- github.com/snipe/snipe-it/pull/10876ghsaWEB
- github.com/snipe/snipe-it/releases/tag/v5.4.2ghsaWEB
- github.com/snipe/snipe-it/releases/tag/v6.0.0-RC-6ghsaWEB
- huntr.dev/bounties/ebc26354-2414-4f72-88aa-f044aec2b2e1ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.