CVE-2024-5296 | D-Link D-View 2.0.1.28 TokenUtils hard-coded key (ZDI-24-447)

Inserito da Angelo Barbosa | Mag 24, 2024 | CVE

A vulnerability, which was classified as very critical, has been found in D-Link D-View 2.0.1.28. This issue affects the function TokenUtils. The manipulation leads to use of hard-coded cryptographic key
.

The identification of this vulnerability is CVE-2024-5296. The attack may be initiated remotely. There is no exploit available.

CVE-2024-5296 | D-Link D-View 2.0.1.28 TokenUtils hard-coded key (ZDI-24-447)

Post correlati

CVE-2024-32409 | SEMCMS 4.8 cross site scripting

CVE-2024-34768 | Fastly Plugin up to 1.2.25 on WordPress authorization

CVE-2024-23315 | AutomationDirect Productivity 3000 P3-550E 1.2.10.9 Programming Software Connection access control (icsa-24-144-01)

CVE-2024-35820 | Linux Kernel up to 6.7.11/6.8.2 io_uring __io_queue_proc Privilege Escalation (51a490a7f63c/0ecb8919469e/1a8ec63b2b6c)