CVE-2022-29405
N/A
N/A
Summary
In Apache Archiva, any registered user can reset password for any users. This is fixed in Archiva 2.2.8
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Apache Software Foundation | Apache Archiva | 2.2 <= 2.2.7 | affected |
Weaknesses
- Apache Archiva Arbitrary user password reset vulnerability
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.