GHSA-hg4q-qffw-jqg4

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Typo 5.1.3 and earlier uses a hard-coded salt for calculating password hashes, which makes it easier for attackers to guess passwords via a brute force attack.

Ссылки

EPSS

Процентиль: 63%

0.00438

Низкий

7.5 High

CVSS3

CVE ID

CVE-2008-4905

Дефекты

CWE-330

Связанные уязвимости

CVE-2008-4905

CVSS3: 7.5

ubuntu

больше 17 лет назад

Typo 5.1.3 and earlier uses a hard-coded salt for calculating password hashes, which makes it easier for attackers to guess passwords via a brute force attack.

CVE-2008-4905

CVSS3: 7.5

nvd

больше 17 лет назад

Typo 5.1.3 and earlier uses a hard-coded salt for calculating password hashes, which makes it easier for attackers to guess passwords via a brute force attack.

CVE-2008-4905

CVSS3: 7.5

debian

больше 17 лет назад

Typo 5.1.3 and earlier uses a hard-coded salt for calculating password ...

EPSS

Процентиль: 63%

0.00438

Низкий

7.5 High

CVSS3

CVE ID

CVE-2008-4905

Дефекты

CWE-330