CVE-2015-6470
Resource Data Management’s Data Manager prior to version 2.2 is affected by a privilege-escalation vulnerability (CWE-269) that allows a valid authenticated user to change passwords for other users, including administrators, via unspecified vectors. Public records indicate remote access and passw...