Vulnerabilities > CVE-2024-34336 - Information Exposure Through Discrepancy vulnerability in Ordat Ordat.Erp
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
NONE Availability impact
NONE Summary
User enumeration vulnerability in ORDAT FOSS-Online before v2.24.01 allows attackers to determine if an account exists in the application by comparing the server responses of the forgot password functionality.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |