CVE-2024-36823

🗓️ 06 Jun 2024 00:00:00Reported by ubuntu.comType

ubuntucve

ubuntucve🔗 ubuntu.com👁 13 Views

Ninja Core v7.0.0 encrypt() function vulnerability in CVE-2024-36823

Reporter	Title	Published	Views	Family All 14
Circl	CVE-2024-36823	25 Mar 202518:25	–	circl
CNNVD	Ninja Web Framework Security Vulnerability	6 Jun 202400:00	–	cnnvd
CVE	CVE-2024-36823	6 Jun 202421:14	–	cve
Cvelist	CVE-2024-36823	6 Jun 202421:14	–	cvelist
Github Security Blog	Weak encryption in Ninja Core	7 Jun 202400:30	–	github
NVD	CVE-2024-36823	6 Jun 202422:15	–	nvd
OSV	GHSA-92WP-JGHR-HH87 Weak encryption in Ninja Core	7 Jun 202400:30	–	osv
OSV	UBUNTU-CVE-2024-36823	6 Jun 202422:15	–	osv
Positive Technologies	PT-2024-27171 · Unknown · Ninja Core	6 Jun 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-36823	7 Jun 202409:07	–	redhatcve

OS	OS Version	Architecture	Package	Package Version	Filename
ubuntu	16.04	noarch	ninja	any	UNKNOWN
ubuntu	25.04	noarch	ninja-build	any	UNKNOWN
ubuntu	24.10	noarch	ninja-build	any	UNKNOWN
ubuntu	24.04	noarch	ninja-build	any	UNKNOWN
ubuntu	22.04	noarch	ninja-build	any	UNKNOWN
ubuntu	20.04	noarch	ninja-build	any	UNKNOWN
ubuntu	18.04	noarch	ninja-build	any	UNKNOWN
ubuntu	16.04	noarch	ninja-build	any	UNKNOWN
ubuntu	16.04	noarch	ninja	any	UNKNOWN
ubuntu	24.10	noarch	ninja-build	any	UNKNOWN

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-36823
launchpad	www.launchpad.net/bugs/cve/CVE-2024-36823
security-tracker	www.security-tracker.debian.org/tracker/CVE-2024-36823

24 Jul 2024 00:00Current

7.5High risk

Vulners AI Score7.5

CVSS 3.17.5

EPSS0.0078

SSVC

ninja core v7.0.0 encrypt() function vulnerability cryptographic algorithm sensitive information unix