Lucene search
GoogleOSV:GHSA-XX3H-J3CX-8QFJHistoryJul 05, 2019 - 9:08 p.m.
Insufficient Entropy in DotNetNuke
2019-07-0521:08:20
Google
osv.dev
20
EPSS
0.011
Percentile
84.3%
DNN (aka DotNetNuke) 9.2 through 9.2.2 incorrectly converts encryption key source values, resulting in lower than expected entropy. NOTE: this issue exists because of an incomplete fix for CVE-2018-15812.
Related
osv
osv
CVE-2018-18326
2019-07-03 17:15:10
Insufficient Entropy in DotNetNuke
2019-07-05 21:08:24
CVE-2018-15812
2019-07-03 17:15:10
prion
prion
Code injection
2019-07-03 17:15:00
Code injection
2019-07-03 17:15:00
nvd
nvd
CVE-2018-18326
2019-07-03 17:15:10
CVE-2018-15812
2019-07-03 17:15:10
cve
cve
CVE-2018-18326
2019-07-03 17:15:10
CVE-2018-15812
2019-07-03 17:15:10
veracode
veracode
Information Disclosure
2019-07-04 09:17:04
Insecure Encryption Key
2019-07-04 05:05:07
github
github
Insufficient Entropy in DotNetNuke
2019-07-05 21:08:20
Insufficient Entropy in DotNetNuke
2019-07-05 21:08:24
cvelist
cvelist
CVE-2018-18326
2019-07-03 16:39:12
CVE-2018-15812
2019-07-03 16:35:30
openvas
openvas
DotNetNuke < 9.3.0 Multiple Vulnerabilities
2022-08-08 00:00:00
DotNetNuke 9.2.x < 9.2.2 Multiple Vulnerabilities
2022-08-08 00:00:00
attackerkb
attackerkb
CVE-2018-15812
2019-07-03 00:00:00
exploitdb
exploitdb
DotNetNuke - Cookie Deserialization Remote Code Execution (Metasploit)
2020-04-16 00:00:00
packetstorm
packetstorm
DotNetNuke Cookie Deserialization Remote Code Execution
2020-04-03 00:00:00
zdt
zdt
DotNetNuke Cookie Deserialization Remote Code Execution Exploit
2020-04-03 00:00:00
metasploit
metasploit
DotNetNuke Cookie Deserialization Remote Code Excecution
2019-07-16 16:16:53