Henryhuang2004

**Name of the Vulnerable Software and Affected Versions** Autolab version 3.0.0 **Description** The issue concerns misconfigured reset password permissions for email-based accounts. Users with insufficient privileges could reset and potentially access privileged users' accounts by resetting their passwords. **Recommendations** For version 3.0.0, update to version 3.0.1 to resolve the issue. As a temporary workaround, consider restricting access to the password reset feature until the update is applied.