Konga · Konga · CVE-2023-2418
**Name of the Vulnerable Software and Affected Versions**
Konga version 2.8.3
**Description**
A problem was found in the Login API component, leading to insufficiently random values. The complexity of an attack is rather high, and the exploitability is difficult. The issue has been disclosed to the public and may be used.
**Recommendations**
For Konga version 2.8.3, it is recommended to change the configuration settings.