Unexpired Session Exploitation in Revive Adserver before 3.2.2

Unexpired Session Exploitation in Revive Adserver before 3.2.2

CVE-2015-7367 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Revive Adserver before 3.2.2 allows remote attackers to perform unspecified actions by leveraging an unexpired session after the user has been (1) deleted or (2) unlinked.

Learn more about our Cis Benchmark Audit For Server Software.