CVE-2024-23589

Summary

Due to outdated Hash algorithm, HCL Glovius Cloud could allow attackers to guess the input data using brute-force or dictionary attacks efficiently using modern hardware such as GPUs or ASICs

Affected Software

VendorProductVersion RangeStatus
HCL SoftwareHCL Glovius Cloud240520affected

Weaknesses

  • CWE-328: CWE-328 Use of Weak Hash

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References