CVE-2024-34340 | Cacti up to 1.2.26 MD5 Hash compat_password_hash comparison

Inserito da Angelo Barbosa | Mag 13, 2024 | CVE

A vulnerability was found in Cacti up to 1.2.26. It has been declared as problematic. Affected by this vulnerability is the function compat_password_hash of the component MD5 Hash Handler. The manipulation leads to incorrect comparison.

This vulnerability is known as CVE-2024-34340. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34340 | Cacti up to 1.2.26 MD5 Hash compat_password_hash comparison

Post correlati

CVE-2024-2012 | Hitachi Energy FOXMAN-UN/UNEM API Gateway authentication bypass

CVE-2024-9007 | jeanmarc77 123solar 1.8.4.5 /detailed.php date1 cross site scripting (Issue 73)

CVE-2024-24844 | PowerPack Pro for Elementor Plugin up to 2.10.6 on WordPress Setting authorization

CVE-2023-48417 | Google Android KeyChainActivity App permission