CVE-2024-56516

free-one-api allows users to access large language model reverse engineering libraries through the standard OpenAI API format. In versions up to and including 1.0.1, MD5 is used to hash passwords before sending them to the backend. MD5 is a cryptographically broken hashing algorithm and is no...

CVE-2024-56516

CVE-2024-56516 affects free-one-api up to version 1.0.1, where MD5 is used to hash passwords before sending to the backend. This hashing approach is cryptographically broken and vulnerable to collision attacks, exposing potential credential compromise. The available connected documents specify th...

CVE-2024-56516 free-one-api uses md5 for password storage

free-one-api allows users to access large language model reverse engineering libraries through the standard OpenAI API format. In versions up to and including 1.0.1, MD5 is used to hash passwords before sending them to the backend. MD5 is a cryptographically broken hashing algorithm and is no...

PT-2024-36826 · Unknown · Free-One-Api

Name of the Vulnerable Software and Affected Versions: free-one-api versions up to and including 1.0.1 Description: The issue concerns the use of MD5, a cryptographically broken hashing algorithm, to hash passwords before sending them to the backend. This makes it vulnerable to collision attacks...

PT-2023-12847 · Intel · Intel Oneapi Toolkit +1

Name of the Vulnerable Software and Affected Versions: IntelR C++ Compiler Classic versions prior to 2021.6 IntelR oneAPI Toolkits versions prior to 2022.2 Description: The issue is related to improper handling of Unicode encoding in source code compiled by the IntelR C++ Compiler Classic. This m...

OpenStack: Glance Authentication bypass for image deletion

The v1 API in OpenStack Glance Grizzly, Folsom 2012.2, and Essex 2012.1 allows remote authenticated users to delete arbitrary non-protected images via an image deletion request, a different vulnerability than CVE-2012-5482...