CVE-2020-6857
CVE-2020-6857 : CarbonFTP v1.4 contains insecure proprietary password encryption with a hard-coded weak encryption key; the key for local FTP server passwords is hard-coded in the binary. The CVE entry identifies the root cause as this hard-coded key, enabling weak protection of passwords. What’s...