4 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-37517
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An Access Control vulnerability exists in Dolibarr ERP/CRM 13.0.2, fixed version is 14.0.0,in the forgot- password function becuase the application allows email...
CVE-2021-37517
creationtimestamp| type| source ---|---|--- 2022-03-31 22:22:05+00:00| seen| https://t.me/cibsecurity/39937...
CVE-2021-37517
An Access Control vulnerability exists in Dolibarr ERP/CRM 13.0.2, fixed version is 14.0.0,in the forgot-password function becuase the application allows email addresses as usernames, which can cause a Denial of Service...
CVE-2021-37517
Dolibarr ERP/CRM 13.0.2 is affected by CVE-2021-37517, an Access Control vulnerability in the forgot-password flow where email addresses can be used as usernames, enabling Denial of Service. Root cause: insufficient validation in forgot-password authentication. Impact: Denial of Service. Remediat...