Security Advisory

CVE-2017-16631

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-11 20:10:30

Last updated 2024-08-05 20:27:04

Assigner mitre

State PUBLISHED

Description

In SapphireIMS 4097_1, a guest user is able to change the password of an administrative user by utilizing an Insecure Direct Object Reference (IDOR) in the "Account Password Reset" functionality.

← Browse all CVEs View on cve.org ↗