Security Advisory
CVE-2021-27651
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
In versions 8.2.1 through 8.5.2 of Pega Infinity, the password reset functionality for local accounts can be used to bypass local authentication checks.