| タイトル | Dígitro NGC Explorer 3.44.15 Improper session token expiration |
|---|
| 説明 | Title: NGC Explorer version 3.44.15 Session Token Remains Valid After Logout
Software affected: NGC Explorer version 3.44.15
Vendor: Dígitro Tecnologia - https://digitro.com/
Description:
It was identified that the system does not properly invalidate authentication tokens after the user logs out. Even after ending the session through the logout functionality, the previously issued token can still be used to access protected resources within the application. This indicates a flaw in session management controls.
Technical Details:
During testing, a session token issued to the system's default root user was captured. After logging out via the application interface, the same token was reused in requests to authenticated endpoints. The application continued to accept and process these requests, demonstrating that logout does not invalidate the session token.
By leveraging this behavior, it was possible to access privileged administrative functionalities. Specifically, the token was used to escalate the privileges of a standard user account, effectively granting it elevated access within the system.
Impact:
This vulnerability allows attackers to reuse session tokens even after logout, undermining the session termination process. When such tokens belong to high-privilege users — such as the default root account — the impact becomes critical.
In the tested scenario, the ability to reuse a root-level token enabled privilege escalation of a non-privileged user. This could lead to unauthorized access to sensitive features, full control over system configurations, and compromise of other user accounts.
Exploitation evidences will be send by e-mail.
|
|---|
| ユーザー | Anonymous User |
|---|
| 送信 | 2025年04月24日 23:28 (1 年 ago) |
|---|
| モデレーション | 2025年05月10日 07:30 (15 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 308273 [Dígitro NGC Explorer 迄 3.44.15/3.48.21 弱い認証] |
|---|
| ポイント | 17 |
|---|