Uploaded image for project: 'Runtime'
  1. Runtime
  2. RUNTIME-2582

Admin Password Reset vulnerability report

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 4.0.2
    • Fix Version/s: 4.0.3
    • Component/s: None
    • Labels:

      Description

      Hi,

       

      I would like to report a admin reset password vulnerability found in latest build.

       

      Please contact me via email - maors@beyondsecurity.com

       

      We would like to report you the vulnerability.

       

      What we do: SSD receives information from security researchers about yet-undisclosed
      security holes in various products. Once this information is received and confirmed, we will
      notify the appropriate product vendor as well as selected customers who are part of the SSD
      program of the security flaw in their product or service.

      What we ask: When notifying the vendor, we will provide full technical details and work
      with the vendor to fix the issue, and coordinate a public advisory. In return, SSD is asking to
      acknowledge the researcher for finding the vulnerability and SSD for reporting the
      vulnerabilities to the vendor in official vendor advisories about this issue.

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              maors Maor
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: