An issue was discovered in Psyprax beforee 3.2.2. Passwords used to encrypt the data are stored in the database in an obfuscated format, which can be easily reverted. For example, the password AAAAAAAA is stored in the database as MMMMMMMM.
References
Link | Resource |
---|---|
https://www.x41-dsec.de/lab/advisories/x41-2020-002-psyprax | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-02-05T19:20:15
Updated: 2021-02-05T19:20:15
Reserved: 2020-03-13T00:00:00
Link: CVE-2020-10554
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-02-05T20:15:12.870
Modified: 2021-07-21T11:39:23.747
Link: CVE-2020-10554
JSON object: View
Redhat Information
No data.