VYPR
Unrated severityNVD Advisory· Published Mar 30, 2022· Updated Aug 3, 2024

CVE-2022-23869

CVE-2022-23869

Description

In RuoYi v4.7.2 through the WebUI, user test1 does not have permission to reset the password of user test3, but the password of user test3 can be reset through the /system/user/resetPwd request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • RuoYi/RuoYi v4.7.2description
  • Ruoyi/Ruoyillm-fuzzy
    Range: v4.7.2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.