11 matches found
EUVD-2021-0115
Malware in sbrugna...
GHSA-P4XH-4869-8VRG AdaptiveScale LXDUI Hardcoded JWT Secret Key
A Hardcoded JWT Secret Key in metadata.py metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...
AdaptiveScale LXDUI Hardcoded JWT Secret Key
A Hardcoded JWT Secret Key in metadata.py metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...
Privilege Escalation
lxdui is vulnerable to privilege escalation. The use of hardcoded secrete key in metadata.py allows an attacker to perform unauthorized access using Admin role...
CVE-2021-40494
A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...
CVE-2021-40494
A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...
PYSEC-2021-342
A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...
Hardcoded credentials
A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...
PYSEC-2021-342
A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...
CVE-2021-40494
A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system...
CVE-2021-40494
CVE-2021-40494 (AdaptiveScale LXDUI) is caused by a hardcoded JWT secret key in metadata.py, affecting AdaptiveScale LXDUI up to version 2.1.3. This secret enables an attacker to obtain admin-level access to the host system. Multiple connected sources corroborate the issue (GHSA, Veracode, OSV, N...