Unknown · Adaptivescale Lxdui · CVE-2021-40494
**Name of the Vulnerable Software and Affected Versions**
AdaptiveScale LXDUI versions 2.1.3 and earlier
**Description**
A hardcoded JWT secret key in metadata.py allows attackers to gain admin access to the host system. This issue affects AdaptiveScale LXDUI, enabling potential attackers to exploit the hardcoded key for unauthorized system access.
**Recommendations**
For AdaptiveScale LXDUI versions 2.1.3 and earlier, update to a version that does not contain the hardcoded JWT secret key to prevent admin access exploitation.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.