Engelsystem is a shift planning system for chaos events. If a users' password is compromised and an attacker gained access to a users' account, i.e., logged in and obtained a session, an attackers' session is not terminated if the users' account password is reset. This vulnerability has been fixed in the commit `dbb089315ff3d`. Users are advised to update their installations. There are no known workarounds for this vulnerability.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2023-10-16T23:32:57.929Z
Updated: 2024-09-13T20:08:55.102Z
Reserved: 2023-10-10T14:36:40.859Z
Link: CVE-2023-45659
Vulnrichment
Updated: 2024-08-02T20:21:16.869Z
NVD
Status : Modified
Published: 2023-10-17T00:15:11.233
Modified: 2024-11-21T08:27:09.500
Link: CVE-2023-45659
Redhat
No data.