CVE-2022-23722

Published: 2022-05-02T22:15Z

Last Modified: 2024-11-21T06:49Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

When a password reset mechanism is configured to use the Authentication API with an Authentication Policy, email One-Time Password, PingID or SMS authentication, an existing user can reset another existing user’s password. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt