3 matches found
CVE-2024-41260
A static initialization vector IV in the encrypt function of netbird management's service from v0.23.2 to v0.29.1 allows attackers to obtain sensitive information email addresses when in possession of the audit events database...
CVE-2024-41260
A static initialization vector IV in the encrypt function of netbird management's service from v0.23.2 to v0.29.1 allows attackers to obtain sensitive information email addresses when in possession of the audit events database...
CVE-2024-41260
CVE-2024-41260 : NetBird’s netbird management service (versions 0.23.2–0.29.1) uses a static initialization vector (IV) in the encrypt function, enabling an attacker with access to the audit events database to obtain sensitive information (email addresses). Root cause: static IV in the encryption...