The password reset feature in the administrator interface for Eucalyptus 2.0.0 and 2.0.1 does not perform authentication, which allows remote malicious users to gain privileges by sending password reset requests for other users.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
eucalyptus eucalyptus 2.0.0 |
||
eucalyptus eucalyptus 2.0.1 |