CVE-2024-29886
CVSS V2 None
CVSS V3 None
Description
Serverpod is an app and web server, built for the Flutter and Dart ecosystem. An issue was identified with the old password hash algorithm that made it susceptible to rainbow attacks if the database was compromised. This vulnerability is fixed by 1.2.6.
Overview
- CVE ID
- CVE-2024-29886
- Assigner
- GitHub_M
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-03-27T18:42:45.113Z
- Last Modified Date
- 2024-03-27T18:42:45.113Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://github.com/serverpod/serverpod/security/advisories/GHSA-r75m-26cq-mjxc | x_refsource_CONFIRM |
| https://github.com/serverpod/serverpod/commit/a78b9e9f1de74d1300633a122b6cc0f064139ad6 | x_refsource_MISC |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-29886 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29886 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-26 02:46:19 | Added to TrackCVE |