3 matches found
CVE-2025-4552
A vulnerability has been found in ContiNew Admin up to 3.6.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /dev-api/system/user/1/password. The manipulation leads to unverified password change. The attack can be launched remotely. The exploi...
CVE-2025-4552 ContiNew Admin password unverified password change
A vulnerability has been found in ContiNew Admin up to 3.6.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /dev-api/system/user/1/password. The manipulation leads to unverified password change. The attack can be launched remotely. The exploi...
CVE-2025-4552
ContiNew Admin up to 3.6.0 is affected by a vulnerability that allows unverified password changes via the /dev-api/system/user/1/password endpoint. Root cause: manipulation of an unauthenticated password change functionality. A remote attacker can exploit this, and the exploit has been disclosed ...