Umbraco CMS logout page displayed before session expiration

GHSA-fp6q-gccw-7qqm · CVE-2024-48926

Published Oct 22, 2024 · Modified Oct 22, 2024

Description

Impact

The Backoffice displays the logout page with a session timeout message before the server session has fully expired, causing users to believe they have been logged out approximately 30 seconds before they actually are.

References

WEB https://github.com/umbraco/Umbraco-CMS/security/advisories/GHSA-fp6q-gccw-7qqm
ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-48926
PACKAGE https://github.com/umbraco/Umbraco-CMS

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes