CVE-2024-29886 | Serverpod up to 1.2.5 Password weak password hash (GHSA-r75m-26cq-mjxc)

Posted by Angelo Barbosa | Mar 27, 2024 | CVE

A vulnerability has been found in Serverpod up to 1.2.5 and classified as problematic. This vulnerability affects unknown code of the component Password Handler. The manipulation leads to password hash with insufficient computational effort.

This vulnerability was named CVE-2024-29886. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29886 | Serverpod up to 1.2.5 Password weak password hash (GHSA-r75m-26cq-mjxc)

Related Posts

CVE-2014-125110 | wp-file-upload Plugin up to 2.4.3 on WordPress lib/wfu_ajaxactions.php wfu_ajax_action_callback cross site scripting

CVE-2024-6619 | Ocean Data Systems AVEVA Reports for Operations 2023 permission assignment (icsa-24-226-08)

CVE-2024-0669 | Plone CMS 6.0.5 URL cross site scripting

CVE-2023-52715 | Huawei HarmonyOS 4.0.0 SystemUI Module permission