2 matches found
CVE-2021-44152
Summary of CVE-2021-44152 (Reprise RLM 14.2): The Goform/change_password_process API does not verify authentication or authorization, allowing an unauthenticated user to change the password of any existing user. This enables an attacker to disable legitimate access by changing user passwords and ...
Reprise License Manager 14.2 Unauthenticated Password Change
Product: Reprise License Manager 14.2 Vendor: Reprise Software CVE ID: CVE-2021-44152 Vulnerability Title: Unauthenticated Password Change Severity: High Authors: Mark Staal Steenberg, Bilal El Ghoul, Gionathan Armando Reale, Andreas Fyhn Andersen, Oliver Lind Nordestgaard Date: 2021-11-25...