Описание
Dolibarr ERP/CRM 4.0.4 allows password changes without supplying the current password, which makes it easier for physically proximate attackers to obtain access via an unattended workstation.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| dolibarr | fixed | 5.0.4+dfsg3-1 | package |
Связанные уязвимости
CVSS3: 6.8
ubuntu
больше 8 лет назад
Dolibarr ERP/CRM 4.0.4 allows password changes without supplying the current password, which makes it easier for physically proximate attackers to obtain access via an unattended workstation.
CVSS3: 6.8
nvd
больше 8 лет назад
Dolibarr ERP/CRM 4.0.4 allows password changes without supplying the current password, which makes it easier for physically proximate attackers to obtain access via an unattended workstation.
CVSS3: 6.8
github
больше 3 лет назад
Dolibarr allows password changes without supplying the current password