Lucene search
K

4 matches found

NVD
NVD
added 2024/12/30 5:15 p.m.34 views

CVE-2024-56516

free-one-api allows users to access large language model reverse engineering libraries through the standard OpenAI API format. In versions up to and including 1.0.1, MD5 is used to hash passwords before sending them to the backend. MD5 is a cryptographically broken hashing algorithm and is no...

6.9CVSS0.00328EPSS
Exploits0References2
Circl
Circl
added 2024/12/30 4:31 p.m.7 views

CVE-2024-56516

creationtimestamp| type| source ---|---|--- 2024-12-30 16:31:57+00:00| seen| https://infosec.exchange/users/cve/statuses/113742729529291973 2024-12-30 19:18:32+00:00| seen| https://t.me/cvedetector/13939...

6.9CVSS4.8AI score0.00328EPSS
Exploits0References2
CVE
CVE
added 2024/12/30 4:19 p.m.93 views

CVE-2024-56516

CVE-2024-56516 affects free-one-api up to version 1.0.1, where MD5 is used to hash passwords before sending to the backend. This hashing approach is cryptographically broken and vulnerable to collision attacks, exposing potential credential compromise. The available connected documents specify th...

6.9CVSS6.8AI score0.00328EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/12/30 4:19 p.m.19 views

CVE-2024-56516 free-one-api uses md5 for password storage

free-one-api allows users to access large language model reverse engineering libraries through the standard OpenAI API format. In versions up to and including 1.0.1, MD5 is used to hash passwords before sending them to the backend. MD5 is a cryptographically broken hashing algorithm and is no...

6.9CVSS7.1AI score0.00328EPSS
Exploits0References2
Rows per page
Query Builder