Security Advisory

CVE-2022-39216

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-14 15:10:51

Last updated 2025-02-25 14:57:48

Assigner GitHub_M

State PUBLISHED

Description

Combodo iTop is an open source, web-based IT service management platform. Prior to versions 2.7.8 and 3.0.2-1, the reset password token is generated without any randomness parameter. This may lead to account takeover. The issue is fixed in versions 2.7.8 and 3.0.2-1.

← Browse all CVEs View on cve.org ↗