Upgrading to a fixed version will, as a side effect, deactivate any cached sessions that may have been leaked through this bug.
MICROSOFT ACTIVESYNC 4.5 BETA 2 PATCH
A patch is available in version 4.11 on the 4.x branch and version 5.0-rc1 on the 5.x branch. Starting with version 4.0 and prior to version 4.11, Zulip is vulnerable to a race condition during account deactivation, where a simultaneous access by the user being deactivated may, in rare cases, allow continued access by the deactivated user.
Zulip is an open source group chat application. Reflected Cross Site Scripting (XSS) vulnerability in NetIQ Access Manager prior to 5.0.2
Potential open redirection vulnerability when URL is crafted in specific format in NetIQ Access Manager prior to 5.0.2 There are currently no known workarounds. Users should upgrade to version 5.0 to receive a patch. Prior to version 5.0, the function used to generate random nonces was not sufficiently cryptographically complex. LTI 1.3 Tool Library is a library used for building IMS-certified LTI 1.3 tool providers in PHP. Prior to version 5.0, the Nonce Claim Value was not being validated against the nonce value sent in the Authentication Request.
In Nordic nRF5 SDK for Mesh 5.0, a heap overflow vulnerability can be triggered by sending a series of segmented control packets and access packets with the same SeqAuth In Nordic nRF5 SDK for Mesh 5.0, a heap overflow vulnerability can be triggered by sending a series of segmented packets with SegO > SegN