Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Forgot Password implementation in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to reset passwords of accounts with blank Hint questions and Hint answers by sending an empty value for each of these two Hint fields.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Consona 多个产品忘记密码功能授权问题漏洞
Vulnerability Description
Consona是全球领先的企业应用解决方案和服务供应商,为各种规模的企业提供信息化服务。 Dynamic Security Agent (DSA)是一个主机防护软件。它无需特征码,是桌面级的恶意软件防护程序。 Consona Live Assistance, Dynamic Agent, 和Subscriber Assistance的忘记密码功能存在授权问题漏洞,远程攻击者可以向空Hint问题和Hint回答字段发送空值,重置账户密码。
CVSS Information
N/A
Vulnerability Type
N/A