Undergoing Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
CVE has been recently published to the CVE List and has been received by the NVD.
Products
Hamastar MeetingHub Paperless Meetings
- 2021
Source
ART@zuso.ai
Tags
CVE-2024-6118 details
Published : Aug. 5, 2024, 5:15 a.m.
Last Modified : Aug. 5, 2024, 12:41 p.m.
Last Modified : Aug. 5, 2024, 12:41 p.m.
Description
A Plaintext Storage of a Password vulnerability in ebooknote function in Hamastar MeetingHub Paperless Meetings 2021 allows remote attackers to obtain the other users’ credentials and gain access to the product via an XML file.
CVSS Score
| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|---|---|
| CWE-256 | Plaintext Storage of a Password | Storing a password in plaintext may result in a system compromise. |
References
| URL | Source |
|---|---|
| https://zuso.ai/advisory/za-2024-03 | ART@zuso.ai |
This website uses the NVD API, but is not approved or certified by it.