Lucene search
K

9 matches found

Circl
Circl
added 2023/06/16 12:21 a.m.4 views

CVE-2023-33243

creationtimestamp| type| source ---|---|--- 2023-06-16 00:21:49+00:00| seen| https://t.me/cibsecurity/65283...

8.1CVSS7.9AI score0.04421EPSS
Exploits4References1
ATTACKERKB
ATTACKERKB
added 2023/06/15 8:15 p.m.3 views

CVE-2023-33243

RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext passwords in an application's database generally has become be...

8.1CVSS7.2AI score0.04421EPSS
Exploits4References3
NVD
NVD
added 2023/06/15 8:15 p.m.56 views

CVE-2023-33243

RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext passwords in an application's database generally has become be...

8.1CVSS8.2AI score0.04421EPSS
Exploits4References2
Cvelist
Cvelist
added 2023/06/15 12:0 a.m.59 views

CVE-2023-33243

RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext passwords in an application's database generally has become be...

8.5AI score0.04421EPSS
Exploits4References2
Vulnrichment
Vulnrichment
added 2023/06/15 12:0 a.m.18 views

CVE-2023-33243

RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext passwords in an application's database generally has become be...

7.1AI score0.04421EPSS
Exploits4References2
CVE
CVE
added 2023/06/15 12:0 a.m.72 views

CVE-2023-33243

Summary: CVE-2023-33243 affects STARFACE web interface and REST API, where authentication is possible using the SHA-512 password hash instead of the cleartext password. The issue originates from allowing hash-based authentication rather than requiring the actual password, enabling potential accou...

8.1CVSS8.2AI score0.04421EPSS
Exploits4References2Affected Software1
Exploit DB
Exploit DB
added 2023/06/04 12:0 a.m.334 views

STARFACE 7.3.0.10 - Authentication with Password Hash Possible

Exploit Title: STARFACE 7.3.0.10 - Authentication with Password Hash Possible Affected Versions: 7.3.0.10 and earlier versions Fixed Versions: - Vulnerability Type: Broken Authentication Security Risk: low Vendor URL: https://www.starface.de Vendor Status: notified Advisory URL:...

8.1CVSS8.2AI score0.04421EPSS
Exploits4
0day.today
0day.today
added 2023/06/01 12:0 a.m.381 views

STARFACE 7.3.0.10 Broken Authentication Exploit

RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext passwords in an application's database generally has become be...

8.1CVSS7.3AI score0.04421EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/06/01 12:0 a.m.390 views

STARFACE 7.3.0.10 Broken Authentication

Advisory: STARFACE: Authentication with Password Hash Possible RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext...

7.1AI score0.04421EPSS
Exploits4
Rows per page
Query Builder