CWE-1018 2 個 CVE MITRE 定義 ↗

CWE-1018:Manage User Sessions

概覽

CWE-1018(Manage User Sessions)描述一種在漏洞資料庫與安全評估中使用的弱點類型;定義、背景與對應 CVE 見下方各節。

安全影響
安全影響:因產品與情境而異;請結合 CVE 紀錄、嚴重度評分與 MITRE 說明進行優先級判斷。

描述

Weaknesses in this category are related to the design and architecture of session management. Frequently these deal with the information or status about each user and their access rights for the duration of multiple requests. The weaknesses in this category could lead to a degradation of the quality of session management if they are not addressed when designing or implementing a secure architecture.

本庫相關 CVE

下列 CVE 在本庫中對應到該弱點,並保留以便追溯與檢索。

CVE 公開時間 摘要
CVE-2025-14909 2025-12-18 A weakness has been identified in JeecgBoot up to 3.9.0. The impacted element is the function SysUserOnlineController of the file jeecg-boot/jeecg-module-system/jeecg-system-biz/src/main/java/org/jeec…
CVE-2023-6760 2023-12-13 A vulnerability classified as critical was found in Thecosy IceCMS up to 2.0.1. This vulnerability affects unknown code. The manipulation leads to manage user sessions. The attack can be initiated rem…

內容提交

名稱
Joanna C.S. Santos, Mehdi Mirakhorli
日期
2017-06-22
版本
2.12
評論
Provided the catalog, Common Architectural Weakness Enumeration (CAWE), and research papers for this view.

內容修訂

日期 名稱 版本 重要性 評論
2020-02-24 CWE Content Team 4.0 updated Description
2023-04-27 CWE Content Team 4.11 updated Mapping_Notes
2023-06-29 CWE Content Team 4.12 updated Mapping_Notes
cvelogic Threat Intelligence