Lucene search
HistoryMay 30, 2014 - 11:55 p.m.
CVE-2014-2354
cve-2014-2354
cogent datahub
password hashing
security vulnerability
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
58.6%
Cogent DataHub before 7.3.5 does not use a salt during password hashing, which makes it easier for context-dependent attackers to obtain cleartext passwords via a brute-force attack.
Affected configurations
Node
cogentdatahubcogent_datahubRange≤7.3.4
ORcogentdatahubcogent_datahubMatch7.0
ORcogentdatahubcogent_datahubMatch7.0.2
ORcogentdatahubcogent_datahubMatch7.1.0
ORcogentdatahubcogent_datahubMatch7.1.1
ORcogentdatahubcogent_datahubMatch7.1.1.63
ORcogentdatahubcogent_datahubMatch7.1.2
ORcogentdatahubcogent_datahubMatch7.2.2
ORcogentdatahubcogent_datahubMatch7.3.0
ORcogentdatahubcogent_datahubMatch7.3.1
ORcogentdatahubcogent_datahubMatch7.3.2
ORcogentdatahubcogent_datahubMatch7.3.3
Related
prion
prion
Design/Logic Flaw
2014-05-30 23:55:00
Design/Logic Flaw
2015-01-13 11:59:00
cvelist
cvelist
CVE-2014-2354
2014-05-30 23:00:00
nvd
nvd
CVE-2014-2354
2014-05-30 23:55:02
CVE-2014-32537
2015-01-13 11:59:38
cve
cve
CVE-2014-32537
2022-10-03 16:20:54
ics
ics
Cogent DataHub Vulnerabilities
2018-09-06 12:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
58.6%
Related for CVE-2014-2354