3 matches found
CVE-2024-53356
Weak JWT Secret vulnerabilitiy in EasyVirt DCScope = 8.6.0 and CO2Scope = 1.3.0 allows remote attackers to generate JWT for privilege escalation. The HMAC secret used for generating tokens is hardcoded as "somerandomaccesstoken". A weak HMAC secret poses a risk because attackers can use the...
CVE-2024-53356
creationtimestamp| type| source ---|---|--- 2025-01-31 22:15:26+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lh2zkmadj32f 2025-01-31 23:25:04+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/3698 2025-02-01 01:25:42+00:00| seen|...
CVE-2024-53356
CVE-2024-53356 affects EasyVirt DCScope <= 8.6.0 and CO2Scope