Unrated severityNVD Advisory· Published Jul 25, 2023· Updated Feb 13, 2025

Bypassing CAPTCHA & Enumerating Usernames via Password Reset Page

CVE-2023-3897

Description

Username enumeration is possible through Bypassing CAPTCHA in On-premise SureMDM Solution on Windows deployment allows attacker to enumerate local user information via error message.

This issue affects SureMDM On-premise: 6.31 and below version

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

42gears/SureMDM On-premisellm-create
Range: <=6.31
Onpremise SureMDM Solution/SureMDM Onpremisev5
Range: 6.31

Patches

Vulnerability mechanics

References

packetstormsecurity.com/files/177179/SureMDM-On-Premise-CAPTCHA-Bypass-User-Enumeration.htmlmitre
www.42gears.com/security-and-compliancemitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000