Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Authentication bypass in password reset process
Vulnerability Description
Authentication Bypass by Spoofing vulnerability in the password reset process of Pandora FMS allows an unauthenticated attacker to initiate a password reset process for any user account without proper authentication. This issue affects PandoraFMS v771 and prior versions on all platforms.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L
Vulnerability Type
使用欺骗进行的认证绕过
Vulnerability Title
PandoraFMS 安全漏洞
Vulnerability Description
PandoraFMS是美国PandoraFMS的一个应用软件。提供一个监控功能。 PandoraFMS 771及之前版本存在安全漏洞,该漏洞源于在密码重置过程中存在欺骗绕过身份验证漏洞。
CVSS Information
N/A
Vulnerability Type
N/A