Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Information Disclosure Vulnerability in CDAC AppSamvid Software
Vulnerability Description
This vulnerability exists in AppSamvid software due to the usage of a weaker cryptographic algorithm (hash) SHA1 in user login component. An attacker with local administrative privileges could exploit this to obtain the password of AppSamvid on the targeted system. Successful exploitation of this vulnerability could allow the attacker to take complete control of the application on the targeted system.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
不充分的加密强度
Vulnerability Title
AppSamvid 安全漏洞
Vulnerability Description
AppSamvid是Cert-In开源的一款免费的应用程序白名单软件。 AppSamvid 2.0.1及之前版本存在安全漏洞,该漏洞源于在user login组件中使用了较弱的加密算法(hash)SHA1,导致具有本地管理权限的攻击者可以在目标系统上获取AppSambid的密码。
CVSS Information
N/A
Vulnerability Type
N/A