EUVD-2021-0115

Malware in sbrugna...

AdaptiveScale LXDUI Hardcoded JWT Secret Key

A Hardcoded JWT Secret Key in metadata.py metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...

GHSA-P4XH-4869-8VRG AdaptiveScale LXDUI Hardcoded JWT Secret Key

A Hardcoded JWT Secret Key in metadata.py metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...

CVE-2021-40494

A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...

CVE-2021-40494

A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...

PYSEC-2021-342

A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...

Hardcoded credentials

A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...

PYSEC-2021-342

A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...

CVE-2021-40494

A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...

CVE-2021-40494

CVE-2021-40494 (AdaptiveScale LXDUI) is caused by a hardcoded JWT secret key in metadata.py, affecting AdaptiveScale LXDUI up to version 2.1.3. This secret enables an attacker to obtain admin-level access to the host system. Multiple connected sources corroborate the issue (GHSA, Veracode, OSV, N...