How severe is CVE-2024-47784?

This vulnerability has a severity rating of LOW with a CVSS score of 2.6 out of 10.

What type of vulnerability is CVE-2024-47784?

This is classified as CWE-620, which is a common weakness in software security.

CVE-2024-47784

LOW Year: 2024

CVSS v3 Score

2.6

Low

Weakness Type

CWE-620

View all →

Vulnerability Description

Unverified Password Change for ANC software that allows an authenticated attacker to bypass the old Password check in the password change form via a web HMI This issue affects ANC software version 1.1.4 and earlier.

CVE-2025-46748

LOW

CVSS:2.7(Low)

An authenticated user attempting to change their password could do so without using the current password.

CWE-6202025

CVE-2025-47938

LOW

CVSS:3.8(Low)

TYPO3 is an open source, PHP based web content management system. Starting in version 9.0.0 and prior to versions 9.5.51 ELTS, 10.4.50 ELTS, 11.5.44 ELTS, 12.4.31 LTS, and 13.4.12 LTS, the backend use...

CWE-6202025

CVE-2025-3793

MEDIUM

CVSS:4.2(Medium)

The Buddypress Force Password Change plugin for WordPress is vulnerable to authenticated account takeover due to the plugin not properly validating a user's identity prior to updating their password t...

CWE-6202025

CVE-2023-4381

MEDIUM

CVSS:4.3(Medium)

Unverified Password Change in GitHub repository instantsoft/icms2 prior to 2.16.1-git.

CWE-6202023

CVE-2023-5844

MEDIUM

CVSS:4.3(Medium)

Unverified Password Change in GitHub repository pimcore/admin-ui-classic-bundle prior to 1.2.0.

CWE-6202023

CVE-2025-3849

MEDIUM

CVSS:4.3(Medium)

A vulnerability classified as problematic was found in YXJ2018 SpringBoot-Vue-OnlineExam 1.0. This vulnerability affects unknown code of the file /api/studentPWD. The manipulation of the argument stud...

CWE-6202025

CVE-2024-47784

Vulnerability Description

Related Vulnerabilities

CVE-2025-46748

CVE-2025-47938

CVE-2025-3793

CVE-2023-4381

CVE-2023-5844

CVE-2025-3849