Description
An issue was discovered in Gambio 4.9.2.0 (patched in 2024-02 v1.0.0 for GX4 v4.0.0.0 to v4.9.2.0). The password reset function can be bypassed to set arbitrary passwords for arbitrary accounts if the ID is known.
Published: 2026-05-05
Score: 9.1 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An attacker who knows a user's account identifier can exploit a flaw in Gambio 4.9.2.0’s password reset feature to set an arbitrary password for that account. The vulnerability allows a direct bypass of the reset mechanism, effectively granting the attacker full control over the targeted account. This can lead to unauthorized access to sensitive data and potential escalation to other parts of the system if the account has elevated privileges.

Affected Systems

The security issue affects Gambio 4.9.2.0, which was patched in the 2024‑02 v1.0.0 release for GX4 versions ranging from v4.0.0.0 to v4.9.2.0. System administrators should verify whether their installations run any of these affected versions and plan to migrate to the patched release.

Risk and Exploitability

The vulnerability is remotely exploitable through the web interface where the password reset function is exposed, assuming the attacker can determine a valid account ID. The EPSS score is <1% and the entry is not listed in the CISA KEV catalog, but the CVSS score of 9.1 indicates a critical severity. The ability to take over any account grants significant confidentiality, integrity and availability risk.

Generated by OpenCVE AI on May 7, 2026 at 00:47 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Gambio to the 2024‑02 v1.0.0 patch or later for GX4 v4.0.0.0 to v4.9.2.0.
  • Disable or protect the password‑reset endpoint by requiring a one‑time token or CAPTCHA to prevent automated exploitation.
  • Enable multi‑factor authentication for all critical user accounts and monitor for unusual password‑change activity.

Generated by OpenCVE AI on May 7, 2026 at 00:47 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 06 May 2026 22:00:00 +0000

Type Values Removed Values Added
Title Password Reset Bypass in Gambio 4.9.2.0 Enables Arbitrary Password Setting
Weaknesses CWE-287

Wed, 06 May 2026 18:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-640
Metrics cvssV3_1

{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 05 May 2026 16:00:00 +0000

Type Values Removed Values Added
First Time appeared Gambio
Gambio gambio
Vendors & Products Gambio
Gambio gambio

Tue, 05 May 2026 15:45:00 +0000

Type Values Removed Values Added
Title Password Reset Bypass in Gambio 4.9.2.0 Enables Arbitrary Password Setting
Weaknesses CWE-287

Tue, 05 May 2026 14:00:00 +0000

Type Values Removed Values Added
Description An issue was discovered in Gambio 4.9.2.0 (patched in 2024-02 v1.0.0 for GX4 v4.0.0.0 to v4.9.2.0). The password reset function can be bypassed to set arbitrary passwords for arbitrary accounts if the ID is known.
References

Subscriptions

Gambio Gambio
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-05-06T17:35:30.322Z

Reserved: 2026-03-27T00:00:00.000Z

Link: CVE-2026-34408

cve-icon Vulnrichment

Updated: 2026-05-06T17:28:59.761Z

cve-icon NVD

Status : Deferred

Published: 2026-05-05T14:16:08.623

Modified: 2026-05-06T18:16:03.223

Link: CVE-2026-34408

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-07T01:00:14Z

Weaknesses