CVE-2024-30257

CVSS V2 None CVSS V3 None
Description
1Panel is an open source Linux server operation and maintenance management panel. The password verification in the source code uses the != symbol instead hmac.Equal. This may lead to a timing attack vulnerability. This vulnerability is fixed in 1.10.3-lts.
Overview
  • CVE ID
  • CVE-2024-30257
  • Assigner
  • GitHub_M
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-04-18T14:56:56.270Z
  • Last Modified Date
  • 2024-06-04T17:38:59.303Z
History
Created Old Value New Value Data Type Notes
2024-06-26 11:57:54 Added to TrackCVE