CVE-2024-6203 | Halo Service Solutions HaloITSM up to 2.146.0 Password Reset Token password recovery

Posted by Angelo Barbosa | Aug 6, 2024 | CVE

A vulnerability classified as problematic was found in Halo Service Solutions HaloITSM up to 2.146.0. Affected by this vulnerability is an unknown functionality of the component Password Reset Token Handler. The manipulation leads to weak password recovery.

This vulnerability is known as CVE-2024-6203. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-6203 | Halo Service Solutions HaloITSM up to 2.146.0 Password Reset Token password recovery

Related Posts

CVE-2023-6348 | Google Chrome prior 119.0.6045.199 Spellcheck type confusion

CVE-2024-6818 | IrfanView PSP File Parser out-of-bounds write

CVE-2021-34957 | Foxit PDF Editor 11.0.0.49893 Highlight Annotation use after free (ZDI-21-1188)

CVE-2024-40886 | Mattermost up to 9.5.7/9.8.2/9.9.1/9.10.0/9.11.0 User Management Page cross-site request forgery