Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in heinekingmedia StashCat through 1.7.5 for Android, through 0.0.80w for Web, and through 0.0.86 for Desktop. For authentication, the user password is hashed directly with SHA-512 without a salt or another key-derivation mechanism to enable a secure secret for authentication. Moreover, only the first 32 bytes of the hash are used. This allows for easy dictionary and rainbow-table attacks if an attacker has access to the password hash.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
heinekingmedia StashCat for Android、Web和Desktop 安全漏洞
Vulnerability Description
heinekingmedia StashCat for Android、Web和Desktop都是德国heinekingmedia公司的产品。heinekingmedia StashCat for Android是一款基于Android的企业级通讯软件。heinekingmedia StashCat for Web是基于Web的版本,heinekingmedia StashCat for Desktop是PC端版本。 heinekingmedia StashCat for Android、Web和Desk
CVSS Information
N/A
Vulnerability Type
N/A