CVE-2021-38461

Summary

The affected product uses a hard-coded blowfish key for encryption/decryption processes. The key can be easily extracted from binaries.

Affected Software

VendorProductVersion RangeStatus
AUVESYVersiondogAll <= 8.0affected

Weaknesses

  • CWE-321: CWE-321 Use of Hard-coded Cryptographic Key

ADP Enrichment

CVE Program Container

Additional References

References