CVE-2021-38461
8.2
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Summary
The affected product uses a hard-coded blowfish key for encryption/decryption processes. The key can be easily extracted from binaries.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| AUVESY | Versiondog | All <= 8.0 | affected |
Weaknesses
- CWE-321: CWE-321 Use of Hard-coded Cryptographic Key
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.