PT-2018-17673 · Ehcp · Easy Hosting Control Panel

Publicado

2018-05-11

Atualizado

2018-06-13

CVE-2018-6619

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Easy Hosting Control Panel (EHCP) version 0.37.12.b

Description The issue makes it easier for attackers to crack database passwords by leveraging the use of a weak hashing algorithm without a salt.

Recommendations For Easy Hosting Control Panel (EHCP) version 0.37.12.b, consider updating to a version that utilizes a stronger hashing algorithm with a salt to mitigate the risk of password cracking.

Exploit

Correção

Use of a Broken Cryptographic Algorithm

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-327

Identificadores relacionados

CVE-2018-6619

Produtos afetados

Easy Hosting Control Panel

PT-2018-17673 · Ehcp · Easy Hosting Control Panel

CVE-2018-6619

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4