HomePentest-Tools.com Logo

Apache Archiva < 2.2.8 Improper Authorization Vulnerability CVE-2022-29405

Severity
CVSSv3 Score
6.5
Vulnerability description

Apache Archiva is prone to an improper authorization vulnerability.

Risk description

Recover or change password mechanics allow registered user to reset password for any other user.

Recommendation

Update to version 2.2.8 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
May 25, 2022
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available