6Mar
CVE-2023-38825 | Vanderbilt REDCap up to 13.7.x Password Reset update.php information disclosure
A vulnerability was found in Vanderbilt REDCap up to 13.7.x. It has been rated as problematic. This issue affects some unknown processing of the file MyCapMobileApp/update.php of the component Password Reset Handler. The manipulation leads to information disclosure. The identification of this vulnerability is CVE-2023-38825. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.