CVE-2020-7962
CVE-2020-7962 affects One Identity Password Manager 5.8. An attacker can enumerate valid answers for a user by distinguishing response content; a valid answer can be detected because WRONG ID is only returned when the answer is incorrect. This can enable reuse of a correct answer for later passwo...