CVE-2024-2365 | Musicshelf 1.0/1.1 on Android SHA-1 PinningTrustManager.java weak password hash

Inserito da Angelo Barbosa | Mar 10, 2024 | CVE

A vulnerability classified as problematic was found in Musicshelf 1.0/1.1 on Android. Affected by this vulnerability is an unknown functionality of the file iofabricsdkandroidservicesnetworkPinningTrustManager.java of the component SHA-1 Handler. The manipulation leads to password hash with insufficient computational effort.

This vulnerability is known as CVE-2024-2365. It is possible to launch the attack on the physical device. Furthermore, there is an exploit available.

CVE-2024-2365 | Musicshelf 1.0/1.1 on Android SHA-1 PinningTrustManager.java weak password hash

Post correlati

CVE-2024-8567 | itsourcecode Payroll Management System 1.0 ajax.php id sql injection

CVE-2024-29997 | Microsoft Windows up to Server 2022 23H2 Mobile Broadband Driver integer overflow

CVE-2024-6639 | MDx Plugin up to 2.0.3 on WordPress Shortcode mdx_list_item cross site scripting

CVE-2023-6531 | Linux Kernel SKB unix_stream_read_generic use after free