exploitDog

GHSA-vx26-cfxm-6ghm

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

eramba c2.8.1 and Enterprise before e2.19.3 has a weak password recovery token (createHash has only a million possibilities).

eramba c2.8.1 and Enterprise before e2.19.3 has a weak password recovery token (createHash has only a million possibilities).

Ссылки

EPSS

Процентиль: 56%

0.0034

Низкий

CVE ID

Связанные уязвимости

CVE-2020-25105

CVSS3: 9.8

nvd

больше 5 лет назад

eramba c2.8.1 and Enterprise before e2.19.3 has a weak password recovery token (createHash has only a million possibilities).

EPSS

Процентиль: 56%

0.0034

Низкий

CVE ID