exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2013-4471

больше 11 лет назад

The Identity v3 API in OpenStack Dashboard (Horizon) before 2013.2 does not require the current password when changing passwords for user accounts, which makes it easier for remote attackers to change a user password by leveraging the authentication token for that user.

CVSS2: 5.5

EPSS: Низкий

CVE-2013-4471

больше 12 лет назад

The Identity v3 API in OpenStack Dashboard (Horizon) before 2013.2 does not require the current password when changing passwords for user accounts, which makes it easier for remote attackers to change a user password by leveraging the authentication token for that user.

CVSS2: 2.6

EPSS: Низкий

CVE-2013-4471

больше 11 лет назад

The Identity v3 API in OpenStack Dashboard (Horizon) before 2013.2 does not require the current password when changing passwords for user accounts, which makes it easier for remote attackers to change a user password by leveraging the authentication token for that user.

CVSS2: 5.5

EPSS: Низкий

CVE-2013-4471

больше 11 лет назад

The Identity v3 API in OpenStack Dashboard (Horizon) before 2013.2 doe ...

CVSS2: 5.5

EPSS: Низкий

GHSA-3hqv-63pg-94p2

больше 3 лет назад

The Identity v3 API in OpenStack Dashboard (Horizon) before 2013.2 does not require the current password when changing passwords for user accounts, which makes it easier for remote attackers to change a user password by leveraging the authentication token for that user.

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2013-4471 The Identity v3 API in OpenStack Dashboard (Horizon) before 2013.2 does not require the current password when changing passwords for user accounts, which makes it easier for remote attackers to change a user password by leveraging the authentication token for that user.	CVSS2: 5.5	0% Низкий	больше 11 лет назад
CVE-2013-4471 The Identity v3 API in OpenStack Dashboard (Horizon) before 2013.2 does not require the current password when changing passwords for user accounts, which makes it easier for remote attackers to change a user password by leveraging the authentication token for that user.	CVSS2: 2.6	0% Низкий	больше 12 лет назад
CVE-2013-4471 The Identity v3 API in OpenStack Dashboard (Horizon) before 2013.2 does not require the current password when changing passwords for user accounts, which makes it easier for remote attackers to change a user password by leveraging the authentication token for that user.	CVSS2: 5.5	0% Низкий	больше 11 лет назад
CVE-2013-4471 The Identity v3 API in OpenStack Dashboard (Horizon) before 2013.2 doe ...	CVSS2: 5.5	0% Низкий	больше 11 лет назад
GHSA-3hqv-63pg-94p2 The Identity v3 API in OpenStack Dashboard (Horizon) before 2013.2 does not require the current password when changing passwords for user accounts, which makes it easier for remote attackers to change a user password by leveraging the authentication token for that user.		0% Низкий	больше 3 лет назад

Уязвимостей на страницу