Engelsystem is a shift planning system for chaos events. If a users' password is compromised and an attacker gained access to a users' account, i.e., logged in and obtained a session, an attackers' session is not terminated if the users' account password is reset. This vulnerability has been fixed in the commit `dbb089315ff3d`. Users are advised to update their installations. There are no known workarounds for this vulnerability.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2023-10-16T23:32:57.929Z

Updated: 2024-09-13T20:08:55.102Z

Reserved: 2023-10-10T14:36:40.859Z

Link: CVE-2023-45659

cve-icon Vulnrichment

Updated: 2024-08-02T20:21:16.869Z

cve-icon NVD

Status : Modified

Published: 2023-10-17T00:15:11.233

Modified: 2024-11-21T08:27:09.500

Link: CVE-2023-45659

cve-icon Redhat

No data.