8.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
44.1%
The Reset Password add-on before 1.2.0 for Alfresco has a broken algorithm (involving an increment) that allows a malicious user to change any user’s account password include the admin account.
amriunix.com/post/alfresco-reset-password-add-on-0-day-vulnerabilities/