CVE-2024-2465

Open redirection vulnerability in CDeX application allows to redirect users to arbitrary websites via a specially crafted URL.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2463

Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2464

This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2464

This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2463

Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2463

Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2465

Open redirection vulnerability in CDeX enables redirection to arbitrary websites via a crafted URL and affects CDeX versions up to 5.7.1, per RH and NVD entries. No remediation or exploit specifics are provided in the connected documents.

CVE-2024-2463 Weak password recovery mechanism in CDeX

Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2463

CVE-2024-2463 describes a weak password recovery mechanism in the CDeX application that allows retrieval of a password reset token, affecting versions up to 5.7.1. The Red Hat and NVD entries confirm the issue and its impact on password reset flows. The generic details do not specify vulnerable c...