CVSS Score of 10 (low)


Published Jun 13, 2023
Updated: Jun 23, 2023
CWE ID 290


CVE-2023-2807 is an Authentication Bypass by Spoofing vulnerability found in Pandora FMS v771 and earlier versions on all platforms. It allows an unauthorized attacker to initiate a password reset process for any user account without proper authentication. The affected products include various versions of Pandora FMS and related software. To remediate this vulnerability, users should update to the latest version of Pandora FMS, which includes the necessary security patches. This vulnerability poses a potential danger to organizations as it allows attackers to gain unauthorized access to user accounts and potentially compromise sensitive data.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-2807 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options