Skip to main content

Ad Self Password Reset

1 CVEs product

Monthly

CVE-2015-8267 CRITICAL Act Now

The PasswordReset.Controllers.ResetController.ChangePasswordIndex method in PasswordReset.dll in Dovestones AD Self Password Reset before 3.0.4.0 allows remote attackers to reset arbitrary passwords. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Ad Self Password Reset
NVD
CVSS 3.0
10.0
EPSS
2.5%
EPSS 2% CVSS 10.0
CRITICAL Act Now

The PasswordReset.Controllers.ResetController.ChangePasswordIndex method in PasswordReset.dll in Dovestones AD Self Password Reset before 3.0.4.0 allows remote attackers to reset arbitrary passwords. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Ad Self Password Reset
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy