CVE-2021-25839

Beschreibung:
A weak password requirement vulnerability exists in the Create New User function of MintHCM RELEASE 3.0.8, which could lead an attacker to easier password brute-forcing.

CWE: CWE-521 CWE-20

CVSS-Bewertung
CVSS 2: MEDIUM – 5 (Version: 2.0)
CVSS 3: CRITICAL – 9.8 (Version: 3.1)

Links:

NVD – CVE-2021-25839
CVE – CVE-2021-25839

Link (max. 20) Quelle Tags
https://github.com/C1inton/CVE-Record/blob/master/CVE%20Record/%5BCVE-2021-25839%5DMintHCM%203.0.8.md MISC Exploit Third Party Advisory Third Party Advisory
https://minthcm.org/ MISC Product Patch Third Party Advisory Vendor Advisory
https://snyk.io/vuln/SNYK-JS-POSTCSS-1255640 MISC Exploit Patch Third Party Advisory
FEDORA-2021-10d7331a31 FEDORA Third Party Advisory
FEDORA-2021-2d860da728 FEDORA
FEDORA-2021-96a5dabcfa FEDORA

Quelle: NVD – CVE-2021-25839
Datum Veröffentlichung: 2021-04-26T14:15Z, Datum letzte Änderung: 2021-05-06T21:17Z