cve/2019/CVE-2019-14826.md

### [CVE-2019-14826](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14826)
![](https://img.shields.io/static/v1?label=Product&message=ipa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20FreeIPA%20versions%204.5.0%20and%20later%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-613&color=brighgreen)

### Description

A flaw was found in FreeIPA versions 4.5.0 and later. Session cookies were retained in the cache after logout. An attacker could abuse this flaw if they obtain previously valid session cookies and can use this to gain access to the session.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/RonenDabach/python-tda-bug-hunt-0
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2019-14826](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14826)`
			`![](https://img.shields.io/static/v1?label=Product&message=ipa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=%3D%20FreeIPA%20versions%204.5.0%20and%20later%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-613&color=brighgreen)`

			`### Description`

			`A flaw was found in FreeIPA versions 4.5.0 and later. Session cookies were retained in the cache after logout. An attacker could abuse this flaw if they obtain previously valid session cookies and can use this to gain access to the session.`

			`### POC`

			`#### Reference`
			`No PoCs from references.`

			`#### Github`
			`- https://github.com/RonenDabach/python-tda-bug-hunt-0`