CVE-2023-4096 Information

Description

Weak password recovery mechanism vulnerability in Fujitsu Arconte Áurea version 1.5.0.0 which exploitation could allow an attacker to perform a brute force attack on the emailed PIN number in order to change the password of a legitimate user.

Reference

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-fujitsu-arconte-aurea