mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-06-07 05:28:59 +00:00
29 lines
1.2 KiB
JSON
29 lines
1.2 KiB
JSON
{
|
|
"id": "CVE-2024-39846",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2024-06-29T21:15:09.917",
|
|
"lastModified": "2024-07-01T12:37:24.220",
|
|
"vulnStatus": "Awaiting Analysis",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "NewPass before 1.2.0 stores passwords (rather than password hashes) directly, which makes it easier to obtain unauthorized access to sensitive information. NOTE: in each case, data at rest is encrypted, but is decrypted within process memory during use."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "NewPass anterior a 1.2.0 almacena contrase\u00f1as (en lugar de hashes de contrase\u00f1as) directamente, lo que facilita la obtenci\u00f3n de acceso no autorizado a informaci\u00f3n confidencial. NOTA: en cada caso, los datos en reposo se cifran, pero se descifran dentro de la memoria del proceso durante el uso."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"references": [
|
|
{
|
|
"url": "https://github.com/6eero/NewPass/commit/13f0a844d64927450fa751deb7cc06beba699720",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "https://github.com/6eero/NewPass/releases/tag/v1.2.0",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |