You are mistaken a user can only change its own password. This microflow applies entity access and if you take a look at the access rules at the user entity you will see that only the logged in user can change its own password.
If you want to change the password with checking the old password; use the verifyPassword JAVA action
or if you want to check if the logged in user is changing the user object of itself, check in an decision $Account = $CurrentUser
But both aren’t necessary to block a user to change other user password.
You are right thank you.
I want to change the password with checking the old password.
How can I do this? -> use the verifyPassword JAVA action