Exploit for #VU92249 Use of Password Hash With Insufficient Computational Effort in FreeIPA

Exploit for #VU92249 Use of Password Hash With Insufficient Computational Effort in FreeIPA

Cybersecurity Help s.r.o.

Published: 2024-08-23

Vulnerability identifier: #VU92249

Vulnerability risk: Low

CVSSv3.1: 3.4 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C]

CVE-ID: CVE-2024-3183

CWE-ID: CWE-916

Exploitation vector: Network

Exploits in database: 1

August 23, 2024
- CVE-2024-3183-POC [Github]

Impact: Information disclosure

Vulnerable software:
FreeIPA
Other software / Other software solutions

Vendor: freeipa.org