← Back to CVE List

CVE-2022-45782

Published: 2023-02-01T22:15Z
Last Modified: 2025-03-27T17:15Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
An issue was discovered in dotCMS core 5.3.8.5 through 5.3.8.15 and 21.03 through 22.10.1. A cryptographically insecure random generation algorithm for password-reset token generation leads to account takeover. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt