Appspace 6.2.4 is affected by Incorrect Access Control via the Appspace Web Portal password reset page.
The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.
Link | Tags |
---|---|
https://github.com/Mrnmap/mrnmap-cve/blob/main/CVE-2021-27704 | broken link |