Unknown · Pandora Fms · CVE-2023-2807
**Name of the Vulnerable Software and Affected Versions**
Pandora FMS versions prior to 7.71
**Description**
The issue is related to an Authentication Bypass by Spoofing vulnerability in the password reset process. This allows an unauthenticated attacker to initiate a password reset process for any user account without proper authentication.
**Recommendations**
For versions prior to 7.71, update to a version that includes the fix for this issue to prevent exploitation.