PT-2017-6791 · Ellucian · Ellucian Banner Student

Publicado

2017-09-11

Atualizado

2019-03-13

CVE-2015-4689

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Ellucian Banner Student versions 8.5.1.2 through 8.7

Description The issue allows remote attackers to reset arbitrary passwords, which could lead to unauthorized access. The estimated number of potentially affected devices and details about real-world incidents are not specified.

Recommendations For versions 8.5.1.2 through 8.7, update to a version that addresses the weak password reset issue to prevent unauthorized password resets.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-640

Identificadores relacionados

CVE-2015-4689

Produtos afetados

Ellucian Banner Student

PT-2017-6791 · Ellucian · Ellucian Banner Student

CVE-2015-4689

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3