CVE-2024-12776 Blast Radius

HIGH • CVSS 8.1In langgenius/dify v0.10.1, the `/forgot-password/resets` endpoint does not verify the password reset code, allowing an attacker to reset the password

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2024-12776.

Start Free Scan →← Back to CVE-2024-12776