CVE-2022-40084

Published: 2022-10-20T14:15Z

Last Modified: 2024-11-21T07:20Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

OpenCRX before v5.2.2 was discovered to be vulnerable to password enumeration due to the difference in error messages received during a password reset which could enable an attacker to determine if a username, email or ID is valid. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt