A vulnerability has been found in OpenAEV-Platform openaev up to 2.0.12 and classified as problematic . Impacted is an unknown function. The manipulation leads to weak password recovery. This vulnerability is traded as CVE-2026-24467 . It is possible to initiate the attack remotely. There is no exploit available. The affected component should be upgraded.