CVE-2024-24554
CVSS V2 None
CVSS V3 None
Description
Bludit uses predictable methods in combination with the MD5 hashing algorithm to generate sensitive tokens such as the API token and the user token. This allows attackers to authenticate against the Bludit API.
Overview
- CVE ID
- CVE-2024-24554
- Assigner
- NCSC.ch
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-06-24T07:11:36.377Z
- Last Modified Date
- 2024-06-24T13:47:43.818Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://www.redguard.ch/blog/2024/06/20/security-advisory-bludit/ |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-24554 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24554 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-26 17:43:17 | Added to TrackCVE |