Weak Password Recovery Mechanism for Forgotten Password

The product contains a mechanism for users to recover or change their passwords without knowing the original password, but the mechanism is weak.

CVEs (269)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-36209 1Jetbrains 1Hub Nov 21, 2024 Aug 6, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In JetBrains Hub before 2021.1.13389, account takeover was possible during password reset.
CVE-2021-36804 1Akaunting 1Akaunting Nov 21, 2024 Aug 4, 2021 N/A· v4 8.1 HIGH· v3 5.8 MEDIUM· v2 Akaunting version 2.1.12 and earlier suffers from a password reset spoofing vulnerability, wherein an attacker can proxy password reset requests through a running Akaunting instance, if that attacker knows the target's e...Show more Akaunting version 2.1.12 and earlier suffers from a password reset spoofing vulnerability, wherein an attacker can proxy password reset requests through a running Akaunting instance, if that attacker knows the target's e-mail address. This issue was fixed in version 2.1.13 of the product. Please note that this issue is ultimately caused by the defaults provided by the Laravel framework, specifically how proxy headers are handled with respect to multi-tenant implementations. In other words, while this is not technically a vulnerability in Laravel, this default configuration is very likely to lead to practically identical identical vulnerabilities in Laravel projects that implement multi-tenant applications.Show less
CVE-2021-33321 1Liferay 2Dxp Liferay Portal Nov 21, 2024 Aug 3, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Insecure default configuration in Liferay Portal 6.2.3 through 7.3.2, and Liferay DXP before 7.3, allows remote attackers to enumerate user email address via the forgot password functionality. The portal.property login.s...Show more Insecure default configuration in Liferay Portal 6.2.3 through 7.3.2, and Liferay DXP before 7.3, allows remote attackers to enumerate user email address via the forgot password functionality. The portal.property login.secure.forgot.password should be defaulted to true.Show less
CVE-2021-22763 1Schneider Electric 5Powerlogic Pm5560 Firmware Powerlogic Pm5561 FirmwarePowerlogic Pm5562 Firmware+2 more May 29, 2026 Jun 11, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists in PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 (see security notification for version infromation)...Show more A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists in PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 (see security notification for version infromation) that could allow an attacker administrator level access to a device.Show less
CVE-2021-28293 1Seceon 1Aisiem Nov 21, 2024 Jun 8, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Seceon aiSIEM before 6.3.2 (build 585) is prone to an unauthenticated account takeover vulnerability in the Forgot Password feature. The lack of correct configuration leads to recovery of the password reset link generate...Show more Seceon aiSIEM before 6.3.2 (build 585) is prone to an unauthenticated account takeover vulnerability in the Forgot Password feature. The lack of correct configuration leads to recovery of the password reset link generated via the password reset functionality, and thus an unauthenticated attacker can set an arbitrary password for any user.Show less
CVE-2021-22731 1Schneider Electric 16Mcsesm043f23f0 Firmware Mcsesm053f1cs0 FirmwareMcsesm053f1cu0 Firmware+13 more Nov 21, 2024 May 26, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Weak Password Recovery Mechanism for Forgotten Password vulnerability exists on Modicon Managed Switch MCSESM* and MCSESP* V8.21 and prior which could cause an unauthorized password change through HTTP / HTTPS when basic...Show more Weak Password Recovery Mechanism for Forgotten Password vulnerability exists on Modicon Managed Switch MCSESM* and MCSESP* V8.21 and prior which could cause an unauthorized password change through HTTP / HTTPS when basic user information is known by a remote attacker.Show less
CVE-2021-31912 1Jetbrains 1Teamcity Nov 21, 2024 May 11, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 In JetBrains TeamCity before 2020.2.3, account takeover was potentially possible during a password reset.
CVE-2021-28128 1Strapi 1Strapi Nov 21, 2024 May 6, 2021 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 In Strapi through 3.6.0, the admin panel allows the changing of one's own password without entering the current password. An attacker who gains access to a valid session can use this to take over an account by changing t...Show more In Strapi through 3.6.0, the admin panel allows the changing of one's own password without entering the current password. An attacker who gains access to a valid session can use this to take over an account by changing the password.Show less
CVE-2021-29080 1Netgear 16Cbr40 Firmware R6900p FirmwareR7000 Firmware+13 more Nov 21, 2024 Mar 23, 2021 N/A· v4 8.1 HIGH· v3 4.8 MEDIUM· v2 Certain NETGEAR devices are affected by password reset by an unauthenticated attacker. This affects RBK852 before 3.2.10.11, RBK853 before 3.2.10.11, RBR854 before 3.2.10.11, RBR850 before 3.2.10.11, RBS850 before 3.2.10...Show more Certain NETGEAR devices are affected by password reset by an unauthenticated attacker. This affects RBK852 before 3.2.10.11, RBK853 before 3.2.10.11, RBR854 before 3.2.10.11, RBR850 before 3.2.10.11, RBS850 before 3.2.10.11, CBR40 before 2.5.0.10, R7000 before 1.0.11.116, R6900P before 1.3.2.126, R7900 before 1.0.4.38, R7960P before 1.4.1.66, R8000 before 1.0.4.66, R7900P before 1.4.1.66, R8000P before 1.4.1.66, RAX75 before 1.0.3.102, RAX80 before 1.0.3.102, and R7000P before 1.3.2.126.Show less
CVE-2021-25323 1Misp 1Misp Nov 21, 2024 Jan 19, 2021 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 The default setting of MISP 2.4.136 did not enable the requirements (aka require_password_confirmation) to provide the previous password when changing a password.
CVE-2020-5361 1Dell 1Cpg Bios Nov 21, 2024 Jan 4, 2021 N/A· v4 7.6 HIGH· v3 7.2 HIGH· v2 Select Dell Client Commercial and Consumer platforms support a BIOS password reset capability that is designed to assist authorized customers who forget their passwords. Dell is aware of unauthorized password generation...Show more Select Dell Client Commercial and Consumer platforms support a BIOS password reset capability that is designed to assist authorized customers who forget their passwords. Dell is aware of unauthorized password generation tools that can generate BIOS recovery passwords. The tools, which are not authorized by Dell, can be used by a physically present attacker to reset BIOS passwords and BIOS-managed Hard Disk Drive (HDD) passwords. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability to bypass security restrictions for BIOS Setup configuration, HDD access and BIOS pre-boot authentication.Show less
CVE-2020-28186 1Terra Master 1Tos Nov 21, 2024 Dec 24, 2020 N/A· v4 7.3 HIGH· v3 6.8 MEDIUM· v2 Email Injection in TerraMaster TOS <= 4.2.06 allows remote unauthenticated attackers to abuse the forget password functionality and achieve account takeover.
CVE-2020-27408 1Os4ed 1Opensis Nov 21, 2024 Dec 4, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 OpenSIS Community Edition through 7.6 is affected by incorrect access controls for the file ResetUserInfo.php that allow an unauthenticated attacker to change the password of arbitrary users.
CVE-2020-27179 1Konzept Ix 1Publixone Nov 21, 2024 Oct 27, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 konzept-ix publiXone before 2020.015 allows attackers to take over arbitrary user accounts by crafting password-reset tokens.
CVE-2020-25728 1Alfresco 1Reset Password Nov 21, 2024 Sep 17, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 The Reset Password add-on before 1.2.0 for Alfresco has a broken algorithm (involving an increment) that allows a malicious user to change any user's account password include the admin account.
CVE-2020-25105 1Eramba 1Eramba Nov 21, 2024 Sep 3, 2020 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 eramba c2.8.1 and Enterprise before e2.19.3 has a weak password recovery token (createHash has only a million possibilities).
CVE-2020-14016 1Naviwebs 1Navigate Cms Nov 21, 2024 Jun 24, 2020 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An issue was discovered in Navigate CMS 2.9 r1433. The forgot-password feature allows users to reset their passwords by using either their username or the email address associated with their account. However, the feature...Show more An issue was discovered in Navigate CMS 2.9 r1433. The forgot-password feature allows users to reset their passwords by using either their username or the email address associated with their account. However, the feature returns a not_found message when the provided username or email address does not match a user in the system. This can be used to enumerate users.Show less
CVE-2020-14015 1Naviwebs 1Navigate Cms Nov 21, 2024 Jun 24, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in Navigate CMS 2.9 r1433. When performing a password reset, a user is emailed an activation code that allows them to reset their password. There is, however, a flaw when no activation code is sup...Show more An issue was discovered in Navigate CMS 2.9 r1433. When performing a password reset, a user is emailed an activation code that allows them to reset their password. There is, however, a flaw when no activation code is supplied. The system will allow an unauthorized user to continue setting a password, even though no activation code was supplied, setting the password for the most recently created user in the system (the user with the highest user id).Show less
CVE-2020-11027 2Debian Wordpress 2Debian Linux Wordpress Nov 21, 2024 Apr 30, 2020 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 In affected versions of WordPress, a password reset link emailed to a user does not expire upon changing the user password. Access would be needed to the email account of the user by a malicious party for successful exec...Show more In affected versions of WordPress, a password reset link emailed to a user does not expire upon changing the user password. Access would be needed to the email account of the user by a malicious party for successful execution. This has been patched in version 5.4.1, along with all the previously affected versions via a minor release (5.3.3, 5.2.6, 5.1.5, 5.0.9, 4.9.14, 4.8.13, 4.7.17, 4.6.18, 4.5.21, 4.4.22, 4.3.23, 4.2.27, 4.1.30, 4.0.30, 3.9.31, 3.8.33, 3.7.33).Show less
CVE-2019-6560 1Auto Maskin 3Dcu 210 Firmware Marine Pro ObserverRp210e Firmware Nov 21, 2024 Mar 23, 2020 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 In Auto-Maskin RP210E Versions 3.7 and prior, DCU210E Versions 3.7 and prior and Marine Observer Pro (Android App), the software contains a mechanism for users to recover or change their passwords without knowing the ori...Show more In Auto-Maskin RP210E Versions 3.7 and prior, DCU210E Versions 3.7 and prior and Marine Observer Pro (Android App), the software contains a mechanism for users to recover or change their passwords without knowing the original password, but the mechanism is weak.Show less

Previous 1...91011...14 Next