The password-reset mechanism in the Forgot Password functionality in R-HUB TurboMeeting through 8.x allows unauthenticated remote attackers to force the application into resetting the administrator's password to a random insecure 8-digit value.
Metrics
Affected Vendors & Products
References
History
Tue, 13 Aug 2024 14:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Rhubcom
Rhubcom turbomeeting |
|
CPEs | cpe:2.3:a:rhubcom:turbomeeting:*:*:*:*:*:*:*:* | |
Vendors & Products |
Rhubcom
Rhubcom turbomeeting |
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-07-25T00:00:00
Updated: 2024-08-02T04:04:25.252Z
Reserved: 2024-06-13T00:00:00
Link: CVE-2024-38287
Vulnrichment
Updated: 2024-07-26T19:08:37.016Z
NVD
Status : Analyzed
Published: 2024-07-25T20:15:04.887
Modified: 2024-08-13T13:34:22.057
Link: CVE-2024-38287
Redhat
No data.