exploitDog

GHSA-2fv7-mv57-whf5

Опубликовано: 24 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS4: 7.3

CVSS3: 7

Описание

A weak password recovery mechanism for forgotten password vulnerability was discovered in Productivity Suite software version v4.4.1.19. The vulnerability allows an attacker to decrypt an encrypted project by answering just one recovery question.

A weak password recovery mechanism for forgotten password vulnerability was discovered in Productivity Suite software version v4.4.1.19. The vulnerability allows an attacker to decrypt an encrypted project by answering just one recovery question.

Ссылки

EPSS

Процентиль: 3%

0.00016

Низкий

7.3 High

CVSS4

7 High

CVSS3

CVE ID

Дефекты

CWE-640

Связанные уязвимости

CVE-2025-61977

CVSS3: 7

nvd

4 месяца назад

A weak password recovery mechanism for forgotten password vulnerability was discovered in Productivity Suite software version v4.4.1.19. The vulnerability allows an attacker to decrypt an encrypted project by answering just one recovery question.

EPSS

Процентиль: 3%

0.00016

Низкий

7.3 High

CVSS4

7 High

CVSS3

CVE ID

Дефекты

CWE-640