Description
Cloud Foundry Runtime cf-release before 216, UAA before 2.5.2, and Pivotal Cloud Foundry (PCF) Elastic Runtime before 1.7.0 allow attackers to have unspecified impact by leveraging failure to expire password reset links.
Remediation
References
https://pivotal.io/security/cve-2015-5170-5173
Related Vulnerabilities
CVE-2019-8331 Vulnerability in maven package org.webjars.npm:bootstrap
CVE-2023-42277 Vulnerability in maven package cn.hutool:hutool-core
CVE-2012-6153 Vulnerability in maven package commons-httpclient:commons-httpclient
CVE-2019-16303 Vulnerability in npm package generator-jhipster
CVE-2023-49382 Vulnerability in maven package com.jfinal:jfinal