Lucene search
K

5 matches found

NVD
NVD
added 2017/11/25 6:29 p.m.16 views

CVE-2017-16946

The adminedit function in app/Controller/UsersController.php in MISP 2.4.82 mishandles the enablepassword field, which allows admins to discover a hashed password by reading the audit log...

4.9CVSS5.2AI score0.01075EPSS
Exploits0References1
Prion
Prion
added 2017/11/25 6:29 p.m.13 views

Default credentials

The adminedit function in app/Controller/UsersController.php in MISP 2.4.82 mishandles the enablepassword field, which allows admins to discover a hashed password by reading the audit log...

4CVSS5.2AI score0.01075EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2017/11/25 6:29 p.m.18 views

CVE-2017-16946

The adminedit function in app/Controller/UsersController.php in MISP 2.4.82 mishandles the enablepassword field, which allows admins to discover a hashed password by reading the audit log...

4.9CVSS6.9AI score
Exploits0References1
CVE
CVE
added 2017/11/25 6:0 p.m.45 views

CVE-2017-16946

CVE-2017-16946 affects MISP version 2.4.82 where the admin_edit function in app/Controller/UsersController.php mishandles the enable_password field, enabling admins to read the audit log and discover a hashed password. The vulnerability description is consistently reported across multiple feeds (...

4.9CVSS5.1AI score0.01075EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/11/25 6:0 p.m.20 views

CVE-2017-16946

The adminedit function in app/Controller/UsersController.php in MISP 2.4.82 mishandles the enablepassword field, which allows admins to discover a hashed password by reading the audit log...

5.2AI score0.01075EPSS
Exploits0References1
Rows per page
Query Builder