Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:9 a.m.10 views

CVE-2022-24865

HumHub is an Open Source Enterprise Social Network. In affected versions users who are forced to change their password by an administrator may retrieve other users' data. This issue has been resolved by commit eb83de20. It is recommended that the HumHub is upgraded to 1.11.0, 1.10.4 or 1.9.4. The...

6.5CVSS7AI score0.01221EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/04/20 8:5 p.m.7 views

CVE-2022-24865 Improper access control in humhub

HumHub is an Open Source Enterprise Social Network. In affected versions users who are forced to change their password by an administrator may retrieve other users' data. This issue has been resolved by commit eb83de20. It is recommended that the HumHub is upgraded to 1.11.0, 1.10.4 or 1.9.4. The...

6.5CVSS6.6AI score0.01221EPSS
Exploits1References3
CVE
CVE
added 2022/04/20 8:5 p.m.76 views

CVE-2022-24865

CVE-2022-24865 affects HumHub (Open Source Enterprise Social Network) with an improper access control vulnerability allowing a forced-password-change flow to let an attacker retrieve other users’ data. The issue has a fixed commit eb83de20 and remediation guidance recommends upgrading HumHub to 1...

6.5CVSS6.5AI score0.01221EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2022/04/20 8:5 p.m.31 views

CVE-2022-24865 Improper access control in humhub

HumHub is an Open Source Enterprise Social Network. In affected versions users who are forced to change their password by an administrator may retrieve other users' data. This issue has been resolved by commit eb83de20. It is recommended that the HumHub is upgraded to 1.11.0, 1.10.4 or 1.9.4. The...

6.5CVSS6.8AI score0.01221EPSS
Exploits1References3
Rows per page
Query Builder