6.9 Medium
AI Score
Confidence
Low
0.019 Low
EPSS
Percentile
88.6%
The password reset feature in the administrator interface for Eucalyptus 2.0.0 and 2.0.1 does not perform authentication, which allows remote attackers to gain privileges by sending password reset requests for other users.
open.eucalyptus.com/wiki/esa-01
secunia.com/advisories/42632
secunia.com/advisories/42666
www.securityfocus.com/bid/45462
www.ubuntu.com/usn/USN-1033-1
www.vupen.com/english/advisories/2010/3259
www.vupen.com/english/advisories/2010/3260
exchange.xforce.ibmcloud.com/vulnerabilities/64167