CVE

CVE-2017-11191

admin

CVE-2017-11191

FreeIPA 4.x with API version 2.213 allows a remote authenticated users to bypass intended account-locking restrictions via an unlock action with an old session ID (for the same user account) that had been created for an earlier session.

Source: CVE-2017-11191

Exit mobile version