Vulnerabilities > Alfresco > High

DATE CVE VULNERABILITY TITLE RISK
2021-10-21 CVE-2021-41790 Unspecified vulnerability in Alfresco Content Services 7.0/7.0.0.1/7.0.0.2
An issue was discovered in Hyland org.alfresco:alfresco-content-services through 7.0.1.2.
network
low complexity
alfresco
8.8
2020-09-17 CVE-2020-25728 Weak Password Recovery Mechanism for Forgotten Password vulnerability in Alfresco Reset Password
The Reset Password add-on before 1.2.0 for Alfresco has a broken algorithm (involving an increment) that allows a malicious user to change any user's account password include the admin account.
network
low complexity
alfresco CWE-640
8.8
2019-09-05 CVE-2019-14224 Deserialization of Untrusted Data vulnerability in Alfresco 5.2
An issue was discovered in Alfresco Community Edition 5.2 201707.
network
low complexity
alfresco CWE-502
7.2