Описание
An Access Control vulnerability exists in Dolibarr ERP/CRM 13.0.2, fixed version is 14.0.0,in the forgot-password function becuase the application allows email addresses as usernames, which can cause a Denial of Service.
| Релиз | Статус | Примечание |
|---|---|---|
| esm-apps/xenial | needed | |
| trusty | ignored | end of standard support |
| upstream | needs-triage | |
| xenial | ignored | end of standard support |
Показывать по
10
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
CVSS3: 7.5
nvd
почти 4 года назад
An Access Control vulnerability exists in Dolibarr ERP/CRM 13.0.2, fixed version is 14.0.0,in the forgot-password function becuase the application allows email addresses as usernames, which can cause a Denial of Service.
CVSS3: 7.5
debian
почти 4 года назад
An Access Control vulnerability exists in Dolibarr ERP/CRM 13.0.2, fix ...
5 Medium
CVSS2
7.5 High
CVSS3