CVE-2025-22386 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An issue was discovered in Optimizely Configured Commerce before 5.2.2408. A medium-severity session issue exists in the Commerce B2B application, affecting the…
High CVSS: 7.3

CVE-2025-22386

An issue was discovered in Optimizely Configured Commerce before 5.2.2408. A medium-severity session issue exists in the Commerce B2B application, affecting the longevity of active sessions in the storefront. This allows session tokens tied to logged-out sessions to still be active and usable.
Vendor
Optimizely
Product
Configured Commerce
CWE
CWE-613
Yayın Tarihi
2025-01-04 02:15:07
Güncelleme
2025-05-20 20:12:18
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-613 Configured Commerce HIGH Optimizely 2025

Referanslar

https://support.optimizely.com/hc/en-us/articles/32695284701069-Configured-Commerce-Security-Advisory-COM-2024-04