5 matches found
BIT-JOOMLA-2021-23128 [20210302] - Core - Potential Insecure FOFEncryptRandval
An issue was discovered in Joomla! 3.2.0 through 3.9.24. The core shipped but unused randval implementation within FOF FOFEncryptRandval used an potential insecure implemetation. That has now been replaced with a call to 'randombytes' and its backport that is shipped within randomcompat...
CVE-2021-23128
An issue was discovered in Joomla! 3.2.0 through 3.9.24. The core shipped but unused randval implementation within FOF FOFEncryptRandval used an potential insecure implemetation. That has now been replaced with a call to 'randombytes' and its backport that is shipped within randomcompat...
CVE-2021-23128
An issue was discovered in Joomla! 3.2.0 through 3.9.24. The core shipped but unused randval implementation within FOF FOFEncryptRandval used an potential insecure implemetation. That has now been replaced with a call to 'randombytes' and its backport that is shipped within randomcompat...
CVE-2021-23128
CVE-2021-23128 affects Joomla! core 3.2.0 through 3.9.24, where the unused FOFEncryptRandval path used an insecure randval implementation. The issue has been mitigated by replacing that code with a call to random_bytes() and its backport shipped in random_compat. Multiple connected sources confir...
PT-2021-15383 · Joomla · Joomla!
Name of the Vulnerable Software and Affected Versions: Joomla! versions 3.2.0 through 3.9.24 Description: An issue was discovered in the core shipped but unused randval implementation within FOF FOFEncryptRandval, which used a potentially insecure implementation. This has been replaced with a cal...