CVE-2024-23580 | HCL DRYiCE Optibot Reset Station 1.0/2.0 One-Time Password encrypted inadequate encryption (KB0113496)

Posted by Angelo Barbosa | May 29, 2024 | CVE

A vulnerability, which was classified as problematic, was found in HCL DRYiCE Optibot Reset Station 1.0/2.0. This affects an unknown part of the component One-Time Password Handler. The manipulation of the argument encrypted leads to inadequate encryption strength.

This vulnerability is uniquely identified as CVE-2024-23580. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-23580 | HCL DRYiCE Optibot Reset Station 1.0/2.0 One-Time Password encrypted inadequate encryption (KB0113496)

Related Posts

CVE-2024-33799 | campcodes Complete Web-Based School Management System 1.0 /model/get_teacher.php id sql injection

CVE-2024-6410 | ProfileGrid Plugin up to 5.8.9 on WordPress resource injection

CVE-2024-7369 | SourceCodester Simple Realtime Quiz System 1.0 Login /ajax.php username sql injection

CVE-2024-2843 | WooCommerce Customers Manager Plugin up to 30.0 on WordPress cross-site request forgery