The password reset function in ILIAS 7.0_beta1 through 7.20 and 8.0_beta1 through 8.1 allows remote attackers to take over the account.
References
Configurations
Configuration 1 (hide)
|
History
06 Jul 2023, 19:43
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:ilias:ilias:*:*:*:*:*:*:*:* | |
CWE | NVD-CWE-noinfo | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
First Time |
Ilias
Ilias ilias |
|
References | (MISC) https://docu.ilias.de/ilias.php?ref_id=1719&obj_id=141694&obj_type=PageObject&cmd=layout&cmdClass=illmpresentationgui&cmdNode=13g&baseClass=ilLMPresentationGUIĀ - Release Notes | |
References | (MISC) https://docu.ilias.de/ilias.php?ref_id=1719&obj_id=141703&obj_type=PageObject&cmd=layout&cmdClass=illmpresentationgui&cmdNode=13g&baseClass=ilLMPresentationGUIĀ - Release Notes |
29 Jun 2023, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-06-29 17:15
Updated : 2024-02-28 20:13
NVD link : CVE-2023-36487
Mitre link : CVE-2023-36487
CVE.ORG link : CVE-2023-36487
JSON object : View
Products Affected
ilias
- ilias
CWE