Andrews Web Libraries Davical Andrews Web Libraries

stack.watch can notify you when security vulnerabilities are reported in Davical Andrews Web Libraries. You can add multiple products that you use with Andrews Web Libraries to create your own personal software stack watcher.

By the Year

In 2020 there have been 2 vulnerabilities in Davical Andrews Web Libraries with an average score of 8.7 out of ten. Last year Andrews Web Libraries had 0 security vulnerabilities published. That is, 2 more vulnerabilities have already been reported in 2020 as compared to last year.

Year Vulnerabilities Average Score
2020 2 8.65
2019 0 0.00
2018 0 0.00

It may take a day or so for new Andrews Web Libraries vulnerabilities to show up. Additionally vulnerabilities may be tagged under a different product or component name.

Latest Davical Andrews Web Libraries Security Vulnerabilities

An issue was discovered in DAViCal Andrew's Web Libraries (AWL) through 0.60

CVE-2020-11728 7.5 - High - April 15, 2020

An issue was discovered in DAViCal Andrew's Web Libraries (AWL) through 0.60. Session management does not use a sufficiently hard-to-guess session key. Anyone who can guess the microsecond time (and the incrementing session_id) can impersonate a session.

384

An issue was discovered in DAViCal Andrew's Web Libraries (AWL) through 0.60

CVE-2020-11729 9.8 - Critical - April 15, 2020

An issue was discovered in DAViCal Andrew's Web Libraries (AWL) through 0.60. Long-term session cookies, uses to provide long-term session continuity, are not generated securely, enabling a brute-force attack that may be successful.

384