CVE-2024-41259 | Navidrome 0.52.3 Gravatar Service weak hash

Posted by Angelo Barbosa | Aug 1, 2024 | CVE

A vulnerability was found in Navidrome 0.52.3. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Gravatar Service. The manipulation leads to use of weak hash.

This vulnerability is handled as CVE-2024-41259. The attack needs to be initiated within the local network. There is no exploit available.

CVE-2024-41259 | Navidrome 0.52.3 Gravatar Service weak hash

Related Posts

CVE-2024-0224 | Google Chrome prior 120.0.6099.199 WebAudio use after free

CVE-2024-20088 | MediaTek MT8796 Keyinstall out-of-bounds (MSV-1543 / ALPS08932099)

CVE-2024-45292 | PHPOffice PhpSpreadsheet up to 1.29.1/2.1.0 javascript URL cross site scripting (GHSA-r8w8-74ww-j4wh)

CVE-2024-22284 | Thomas Belser Asgaros Forum Plugin up to 2.7.2 on WordPress deserialization