Lucene search
PRIOn knowledge basePRION:CVE-2024-25607HistoryFeb 20, 2024 - 10:15 a.m.
Default credentials
2024-02-2010:15:00
PRIOn knowledge base
www.prio-n.com
3
default credentials
weak hashing algorithm
liferay portal
The default password hashing algorithm (PBKDF2-HMAC-SHA1) in Liferay Portal 7.2.0 through 7.4.3.15, and older unsupported versions, and Liferay DXP 7.4 before update 16, 7.3 before update 4, 7.2 before fix pack 17, and older unsupported versions defaults to a low work factor, which allows attackers to quickly crack password hashes.
Related
cve
cve
CVE-2024-25607
2024-02-20 10:15:08
cvelist
cvelist
CVE-2024-25607
2024-02-20 09:17:04
nvd
nvd
CVE-2024-25607
2024-02-20 10:15:08
veracode
veracode
Weak Cryptographic Hash
2024-03-20 05:40:33