CA Data Protection iConsole uses cookies to maintain the sessionID. Consecutive login and logoff from the same user reuses the sessionID and is not renewed. This is a potential security loophole.

Programmatic issue.

FIX:SO09504 (incorporating Web_15.2_HF0196) has been released to address this issue and will renew the session ID for each login attempt..

https://casupport.broadcom.com/download-center/solution-detail.html?aparNo=SO09504&os=WINDOWS

Note:

This fix supersedes FIX:RO99173 (incorporating Web_15.20_HF0125, Web_Native_x64_15.20_HF0126.msp).