CVE-2010-1910
Consona Dynamic Agent - Authentication Bypass
Title source: ruleDescription
The Forgot Password implementation in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to reset passwords of accounts with blank Hint questions and Hint answers by sending an empty value for each of these two Hint fields.
References (6)
Scores
EPSS
0.0110
EPSS Percentile
77.8%
Classification
CWE
CWE-287
Status
draft
Affected Products (5)
consona/consona_dynamic_agent
consona/consona_dynamic_agent
consona/consona_dynamic_agent
consona/consona_live_assistance
consona/consona_subscriber_assistance
Timeline
Published
May 12, 2010
Tracked Since
Feb 18, 2026