Описание
Serverpod is an app and web server, built for the Flutter and Dart ecosystem. An issue was identified with the old password hash algorithm that made it susceptible to rainbow attacks if the database was compromised. This vulnerability is fixed by 1.2.6.
Ссылки
- Patch
- Vendor Advisory
- Patch
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.2.6 (исключая)
cpe:2.3:a:serverpod:serverpod:*:*:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.00163
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-916
Связанные уязвимости
CVSS3: 5.3
github
почти 2 года назад
Serverpod improved security for stored password hashes
EPSS
Процентиль: 37%
0.00163
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-916