How severe is CVE-2023-2807?

CVE-2023-2807 has a CVSS v3 score of 6.4 (MEDIUM).

CVE-2023-2807

Name: pandora_fms
Author: pandorafms

6.4MEDIUM

Authentication Bypass by Spoofing vulnerability in the password reset process of Pandora FMS allows an unauthenticated attacker to initiate a password reset process for any user account without proper

Published: 6/13/2023Updated: 11/21/2024

Description

Authentication Bypass by Spoofing vulnerability in the password reset process of Pandora FMS allows an unauthenticated attacker to initiate a password reset process for any user account without proper authentication. This issue affects PandoraFMS v771 and prior versions on all platforms.

AI AnalysisPowered by AI

Affected Products

pandorafmspandora_fms

References

https://pandorafms.com/en/security/common-vulnerabilities-and-exposures/
Vendor Advisory
https://pandorafms.com/en/security/common-vulnerabilities-and-exposures/
Vendor Advisory