CVE-2023-1976

Exploit

Password Aging with Long Expiration in GitHub repository answerdev/answer prior to 1.0.6.

Affected products Warnungen 0 Metrics 3 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Answer ≫ Answer Version < 1.0.6

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.05%	0.135

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
security@huntr.dev	4.6	2.1	2.5	CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:L

CWE-263 Password Aging with Long Expiration

The product supports password aging, but the expiration period is too long.

Patch

Patch

Third Party Advisory

Exploit

CVE Source (NVD)

CVE Source (JSON)

EUVD