Every CVE whose affected-product data names Opft Session, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-2045 — CVSS 5.5 (medium): Session version 1.17.5 allows obtaining internal application files and public files from the user's device without the user's consent. This…
CVE-2022-1955 — CVSS 4.6 (medium): Session 1.13.0 allows an attacker with physical access to the victim's device to bypass the application's password/pin lock to access user…