CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2017/11/25 6:29 p.m.•8 views

CVE-2017-16946

The adminedit function in app/Controller/UsersController.php in MISP 2.4.82 mishandles the enablepassword field, which allows admins to discover a hashed password by reading the audit log...

4.9CVSS5.2AI score0.00296EPSS

Exploits0References1

OSV•added 2017/11/25 6:29 p.m.•14 views

CVE-2017-16946

The adminedit function in app/Controller/UsersController.php in MISP 2.4.82 mishandles the enablepassword field, which allows admins to discover a hashed password by reading the audit log...

4.9CVSS6.9AI score

Exploits0References1

Prion•added 2017/11/25 6:29 p.m.•11 views

Default credentials

The adminedit function in app/Controller/UsersController.php in MISP 2.4.82 mishandles the enablepassword field, which allows admins to discover a hashed password by reading the audit log...

4CVSS5.2AI score0.00296EPSS

Exploits0References1Affected Software1

CVE•added 2017/11/25 6:0 p.m.•41 views

CVE-2017-16946

CVE-2017-16946 affects MISP version 2.4.82 where the admin_edit function in app/Controller/UsersController.php mishandles the enable_password field, enabling admins to read the audit log and discover a hashed password. The vulnerability description is consistently reported across multiple feeds (...

4.9CVSS5.1AI score0.00296EPSS

Exploits0References1Affected Software1

Cvelist•added 2017/11/25 6:0 p.m.•10 views

CVE-2017-16946

The adminedit function in app/Controller/UsersController.php in MISP 2.4.82 mishandles the enablepassword field, which allows admins to discover a hashed password by reading the audit log...

5.2AI score0.00296EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by