Security Advisory

CVE-2020-15392

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-07-07 13:58:47

Last updated 2024-08-04 13:15:20

Assigner mitre

State PUBLISHED

Description

A user enumeration vulnerability flaw was found in Venki Supravizio BPM 10.1.2. This issue occurs during password recovery, where a difference in error messages could allow an attacker to determine if a username is valid or not, enabling a brute-force attack with valid usernames.

← Browse all CVEs View on cve.org ↗