101 vulnerabilities classified as CWE-640 (忘记口令恢复机制弱). AI Chinese analysis included.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2021-27654 | Pegasystems Pega 授权问题漏洞 — Pega Infinity | 7.8 | - | 2022-01-28 |
| CVE-2022-22691 | Umbraco Password Reset URL Poison — Umbraco CMS | 6.8 | Medium | 2022-01-18 |
| CVE-2021-25961 | SuiteCRM - Account Takeover in Password Reset Functionality — SuiteCRM | 8.0 | High | 2021-09-29 |
| CVE-2021-25957 | Account Takeover in "Dolibarr" via Password Reset Functionality — dolibarr | 8.8 | High | 2021-08-17 |
| CVE-2021-37693 | Re-use of email tokens in Discourse — discourse | 5.3 | Medium | 2021-08-13 |
| CVE-2021-36804 | Akaunting Password Reset Relay — Akaunting | 5.4 | Medium | 2021-08-04 |
| CVE-2021-22763 | Schneider-electric PowerLogic 多款产品授权问题漏洞 — PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 (see security notification for version infromation) | 9.8 | - | 2021-06-11 |
| CVE-2021-22731 | Schneider Electric 授权问题漏洞 — Modicon Managed Switch MCSESM* and MCSESP* V8.21 and prior | 9.8 | - | 2021-05-26 |
| CVE-2020-5361 | Dell Client Commercial and Consumer 授权问题漏洞 — CPG BIOS | 5.1 | Medium | 2021-01-04 |
| CVE-2019-6560 | Auto-Maskin 授权问题漏洞 — Auto-Maskin RP210E Versions 3.7 and prior DCU210E Versions 3.7 and prior and Marine Observer Pro (Android App) | 9.1 | - | 2020-03-23 |
| CVE-2018-16529 | Forcepoint Email Security 授权问题漏洞 — Forcepoint Email Security | 9.8 | - | 2019-03-28 |
Vulnerabilities classified as CWE-640 (忘记口令恢复机制弱) represent 101 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.