CVE-2024-6118

Aug. 5, 2024, 12:41 p.m.

Tags

CWE-256
ART@zuso.ai
2024-08-05
CVE-2024-6118

Product(s) Impacted

Hamastar MeetingHub Paperless Meetings

  • 2021

Description

A Plaintext Storage of a Password vulnerability in ebooknote function in Hamastar MeetingHub Paperless Meetings 2021 allows remote attackers to obtain the other users’ credentials and gain access to the product via an XML file.

Weaknesses

CWE-256
Plaintext Storage of a Password

Storing a password in plaintext may result in a system compromise.

CWE ID: 256

Date

Published: Aug. 5, 2024, 5:15 a.m.

Last Modified: Aug. 5, 2024, 12:41 p.m.

Status : Undergoing Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

ART@zuso.ai

References

https://zuso.ai/advisory/za-2024-03
ART@zuso.ai