Lucene search
K

4 matches found

Veracode
Veracode
added 2025/03/28 6:37 a.m.7 views

Improper Password Verification

org.springframework.security, spring-security-crypto is vulnerable to Improper password verification. The vulnerability is due to BCrypt's 72-character password truncation causing BCryptPasswordEncoder.matches to validate only the first 72 characters, allowing incorrect password acceptance...

7.4CVSS7.2AI score0.00568EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/08 8:1 p.m.8 views

CVE-2023-31123 effectindex/tripreporter vulnerable to improper password verification on POST `/api/v1/account/login`

effectindex/tripreporter is a community-powered, universal platform for submitting and analyzing trip reports. Prior to commit bd80ba833b9023d39ca22e29874296c8729dd53b, any user with an account on an instance of effectindex/tripreporter, e.g. subjective.report, may be affected by an improper...

9.1CVSS9.1AI score0.00649EPSS
Exploits0References2
OSV
OSV
added 2023/05/08 8:1 p.m.20 views

CVE-2023-31123 effectindex/tripreporter vulnerable to improper password verification on POST `/api/v1/account/login`

effectindex/tripreporter is a community-powered, universal platform for submitting and analyzing trip reports. Prior to commit bd80ba833b9023d39ca22e29874296c8729dd53b, any user with an account on an instance of effectindex/tripreporter, e.g. subjective.report, may be affected by an improper...

9.1CVSS9AI score0.00649EPSS
Exploits0References4
CNVD
CNVD
added 2020/09/09 12:0 a.m.2 views

Improper Password Signature Verification Vulnerability in Multiple Siemens Products

Siemens SINEMA Remote Connect is a suite of remote network management platforms from Siemens, Germany.SIMIT Simluation Platform allows simulation of plant setups in order to predict failures at an early planning stage.SINEC INS is a web-based application that combines various network services in...

7.5CVSS7AI score0.00838EPSS
Exploits0References1
Rows per page
Query Builder