CVE-2021-23020
N/A
N/A
Summary
The NAAS 3.x before 3.10.0 API keys were generated using an insecure pseudo-random string and hashing algorithm which could lead to predictable keys.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Nginx Controller | “3.x before 3.10.0” | affected |
Weaknesses
- CWE-330: CWE-330
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.