Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Saviynt Enterprise Identity Cloud (EIC) 5.5 SP2.x. An authentication bypass in ECM/maintenance/forgotpasswordstep1 allows an unauthenticated user to reset passwords and login as any local account.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Saviynt Enterprise Identity Cloud 授权问题漏洞
Vulnerability Description
Saviynt Enterprise Identity Cloud(Saviynt Eic)是Saviynt公司的一个由云架构、云部署的身份治理和管理平台。 Saviynt Enterprise Identity Cloud (EIC) 存在安全漏洞,该漏洞源于在savynt Enterprise Identity Cloud (EIC) 5.5 SP2.x中发现一个问题。ECM维护中的forgotpasswordstep1中的身份验证旁路允许未经身份验证的用户重置密码并作为任何本地帐户登录。
CVSS Information
N/A
Vulnerability Type
N/A