Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2020-27408

OpenSIS Community Edition through 7.6 is affected by incorrect access controls for the file ResetUserInfo.php that allow an unauthenticated attacker to change the password of arbitrary users.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.017
EPSS Ranking 73.8%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Products affected by CVE-2020-27408
  • Os4ed » Opensis » Version: 7.3
    cpe:2.3:a:os4ed:opensis:7.3
  • Os4ed » Opensis » Version: 7.6
    cpe:2.3:a:os4ed:opensis:7.6


Contact Us

Shodan ® - All rights reserved