CVE-2015-5997

2015-09-14T14:59:00
ID CVE-2015-5997
Type cve
Reporter cve@mitre.org
Modified 2015-09-16T13:07:00

Description

Impero Education Pro before 5105 uses a hardcoded CBC key and initialization vector derived from a hash of the Imp3ro string, which makes it easier for remote attackers to obtain plaintext data by sniffing the network for ciphertext data. <a href="https://cwe.mitre.org/data/definitions/329.html">CWE-329: Not Using a Random IV with CBC Mode</a>