Vulnerabilities > Unverified Password Change
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-30 | CVE-2024-33699 | Unverified Password Change vulnerability in Level1 Wbr-6012 Firmware R0.40E6 The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the current password. | 8.8 |
| 2023-12-29 | CVE-2023-4465 | Unverified Password Change vulnerability in Poly products A vulnerability, which was classified as problematic, was found in Poly Trio 8300, Trio 8500, Trio 8800, Trio C60, CCX 350, CCX 400, CCX 500, CCX 505, CCX 600, CCX 700, EDGE E100, EDGE E220, EDGE E300, EDGE E320, EDGE E350, EDGE E400, EDGE E450, EDGE E500, EDGE E550, VVX 101, VVX 150, VVX 201, VVX 250, VVX 300, VVX 301, VVX 310, VVX 311, VVX 350, VVX 400, VVX 401, VVX 410, VVX 411, VVX 450, VVX 500, VVX 501, VVX 600 and VVX 601. | 6.5 |
| 2022-08-22 | CVE-2022-2930 | Unverified Password Change vulnerability in Octoprint Unverified Password Change in GitHub repository octoprint/octoprint prior to 1.8.3. | 7.8 |
| 2021-07-21 | CVE-2021-22773 | Unverified Password Change vulnerability in Schneider-Electric products A CWE-620: Unverified Password Change vulnerability exists in EVlink City (EVC1S22P4 / EVC1S7P4 all versions prior to R8 V3.4.0.1), EVlink Parking (EVW2 / EVF2 / EV.2 all versions prior to R8 V3.4.0.1), and EVlink Smart Wallbox (EVB1A all versions prior to R8 V3.4.0.1 ) that could allow an attacker connected to the charging station web server to modify the password of a user. | 6.5 |