CVE-2018-7195
Enhancesoft osTicket before 1.10.2 allows remote attackers to reset arbitrary passwords (when an associated e-mail address is known) by leve
CVSS
8.1
High
EPSS
1.0%
p60
KEV
—
Exploit Today
18
0-100
Published: Mar 27, 2018 · Last modified: Jul 10, 2026
1.0%EPSS · 30 days1.0%
2026-06-302026-07-16
Enhancesoft osTicket before 1.10.2 allows remote attackers to reset arbitrary passwords (when an associated e-mail address is known) by leveraging guest access and guessing a 6-digit number.
No related CVEs by CWE or product.