9 matches found
CVE-2024-2465
Open redirection vulnerability in CDeX application allows to redirect users to arbitrary websites via a specially crafted URL.This issue affects CDeX application versions through 5.7.1...
CVE-2024-2463
Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through 5.7.1...
CVE-2024-2464
This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.This issue affects CDeX application versions through 5.7.1...
CVE-2024-2464
This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.This issue affects CDeX application versions through 5.7.1...
CVE-2024-2463
Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through 5.7.1...
CVE-2024-2463
Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through 5.7.1...
CVE-2024-2465
Open redirection vulnerability in CDeX enables redirection to arbitrary websites via a crafted URL and affects CDeX versions up to 5.7.1, per RH and NVD entries. No remediation or exploit specifics are provided in the connected documents.
CVE-2024-2463 Weak password recovery mechanism in CDeX
Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through 5.7.1...
CVE-2024-2463
CVE-2024-2463 describes a weak password recovery mechanism in the CDeX application that allows retrieval of a password reset token, affecting versions up to 5.7.1. The Red Hat and NVD entries confirm the issue and its impact on password reset flows. The generic details do not specify vulnerable c...