CVE-2023-45659

Name of the Vulnerable Software and Affected Versions Engelsystem (affected versions not specified)

Description Engelsystem is a shift planning system for chaos events. If a user's password is compromised and an attacker gains access to the user's account, the attacker's session is not terminated if the user's account password is reset.

Recommendations Update installations to a version that includes the fix committed in dbb089315ff3d. As a temporary workaround, consider implementing additional security measures to monitor and terminate suspicious sessions. Restrict access to sensitive areas of the system until the update is applied. There are no known workarounds for this issue, so updating is the recommended course of action.