CVE-2024-55585 | moPS up to 1.8.618 API Endpoint resetpassword missing authentication

Inserito da Angelo Barbosa | Giu 7, 2025 | CVE

A vulnerability, which was classified as critical, was found in moPS up to 1.8.618. Affected is an unknown function of the file /api/v1/users/resetpassword of the component API Endpoint. The manipulation leads to missing authentication.

This vulnerability is traded as CVE-2024-55585. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-55585 | moPS up to 1.8.618 API Endpoint resetpassword missing authentication

Post correlati

CVE-2024-49506 | openSUSE Tumbleweed up to 1.0.1/1.2.3 temp file

CVE-2023-52345 | Unisoc S8000 Modem Driver information disclosure

CVE-2017-15832 | Qualcomm Snapdragon Mobile MDM9206/MDM9607/SD 835/SD 845/SD 850 WLAN Host Driver input validation

Tenda AX1803 SetOnlineDevName buffer overflow