exploitDog

GHSA-5pqr-784w-qv2q

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

WebEOC before 6.0.2 uses the same secret key for all installations, which allows attackers with the key to decrypt data from any WebEOC installation.

WebEOC before 6.0.2 uses the same secret key for all installations, which allows attackers with the key to decrypt data from any WebEOC installation.

Ссылки

EPSS

Процентиль: 59%

0.00377

Низкий

CVE ID

Связанные уязвимости

CVE-2005-4002

nvd

около 20 лет назад

WebEOC before 6.0.2 uses the same secret key for all installations, which allows attackers with the key to decrypt data from any WebEOC installation.

EPSS

Процентиль: 59%

0.00377

Низкий

CVE ID