Security Advisory

CVE-2019-13240

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-07-10 13:48:26

Last updated 2024-08-04 23:49:24

Assigner mitre

State PUBLISHED

Description

An issue was discovered in GLPI before 9.4.1. After a successful password reset by a user, it is possible to change that users password again during the next 24 hours without any information except the associated email address.

← Browse all CVEs View on cve.org ↗