Cyber News

Insufficient Session Expiration in SSLVPN

09/12/2025

CVSSv3 Score: 5.3

An Insufficient Session Expiration vulnerability [CWE-613] in FortiOS SSLVPN may allow an attacker to maintain access to network resources via an active session not terminated after a user’s password change under particular conditions outside of the attacker’s control

Revised on 2025-12-09 00:00:00

– Read more

Monday	08:00 - 17:00
Tuesday	08:00 - 17:00
Wednesday	08:00 - 17:00
Thursday	08:00 - 17:00
Friday	08:00 - 17:00

Insufficient Session Expiration in SSLVPN

Latest article

How to get started with security response automation on AWS

I’m locked in!

Exposed Open Directory Leaks BYOB Framework Across Windows, Linux, and macOS

Identitäten im Fokus von Cyberkriminellen

EDITOR PICKS

How to get started with security response automation on AWS

I’m locked in!

Exposed Open Directory Leaks BYOB Framework Across Windows, Linux, and macOS

POPULAR POSTS

Threats to users of adult websites in 2018

The World’s Most Popular Coding Language Happens to be Most Hackers’...

IT threat evolution Q2 2019

POPULAR CATEGORY

How to get started with security response automation on AWS

I’m locked in!

Exposed Open Directory Leaks BYOB Framework Across Windows, Linux, and macOS