Unrated severityNVD Advisory· Published Mar 30, 2022· Updated Aug 3, 2024
CVE-2022-23869
CVE-2022-23869
Description
In RuoYi v4.7.2 through the WebUI, user test1 does not have permission to reset the password of user test3, but the password of user test3 can be reset through the /system/user/resetPwd request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- RuoYi/RuoYi v4.7.2description
Patches
Vulnerability mechanics
References
1- gitee.com/y_project/RuoYi/issues/I4RCO2mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.