Go modules package
go.pinniped.dev
pkg:golang/go.pinniped.dev
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-31677 | — | >= 0.3.0, < 0.19.0 | 0.19.0 | Aug 29, 2022 | An Insufficient Session Expiration issue was discovered in the Pinniped Supervisor (before v0.19.0). A user authenticating to Kubernetes clusters via the Pinniped Supervisor could potentially use their access token to continue their session beyond what proper use of their refresh |
- CVE-2022-31677Aug 29, 2022affected >= 0.3.0, < 0.19.0fixed 0.19.0
An Insufficient Session Expiration issue was discovered in the Pinniped Supervisor (before v0.19.0). A user authenticating to Kubernetes clusters via the Pinniped Supervisor could potentially use their access token to continue their session beyond what proper use of their refresh