Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentMitreVULNRICHMENT:CVE-2023-31579
HistoryNov 02, 2023 - 12:00 a.m.

CVE-2023-31579

2023-11-0200:00:00
mitre
github.com
dromara lamp-cloud
v3.8.1
hardcoded cryptographic key
jwt authentication
vulnerability

AI Score

6.9

Confidence

High

SSVC

Exploitation

poc

Automatable

yes

Technical Impact

total

JSON

Dromara Lamp-Cloud before v3.8.1 was discovered to use a hardcoded cryptographic key when creating and verifying a Json Web Token. This vulnerability allows attackers to authenticate to the application via a crafted JWT token.

Related

osv 2
cvelist 1
nvd 1
cve 1
prion 1
veracode 1
github 1
osv
osv
CVE-2023-31579
2023-11-02 22:15:08
Dromara Lamp-Cloud Use of Hard-coded Cryptographic Key
2023-11-03 00:30:26
cvelist
cvelist
CVE-2023-31579
2023-11-02 00:00:00
nvd
nvd
CVE-2023-31579
2023-11-02 22:15:08
cve
cve
CVE-2023-31579
2023-11-02 22:15:08
prion
prion
Hardcoded credentials
2023-11-02 22:15:00
veracode
veracode
Use Of Hardcoded Cryptographic Key
2023-11-06 09:49:10
github
github
Dromara Lamp-Cloud Use of Hard-coded Cryptographic Key
2023-11-03 00:30:26

AI Score

6.9

Confidence

High

SSVC

Exploitation

poc

Automatable

yes

Technical Impact

total

JSON
Related for VULNRICHMENT:CVE-2023-31579
osv2cvelist1nvd1cve1prion1veracode1github1