CVE-2024-24553

Name of the Vulnerable Software and Affected Versions Bludit (affected versions not specified)

Description The issue concerns the use of the SHA-1 hashing algorithm to compute password hashes, which allows attackers to determine cleartext passwords with brute-force attacks due to the inherent speed of SHA-1. Additionally, the salt generated by Bludit is computed with a non-cryptographically secure function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.