Weak Hash Generation in LMS5xx: Vulnerability Exploitation and Password Retrieval

Weak Hash Generation in LMS5xx: Vulnerability Exploitation and Password Retrieval

CVE-2023-31412 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

The LMS5xx uses weak hash generation methods, resulting in the creation of insecure hashs. If an attacker manages to retrieve the hash, it could lead to collision attacks and the potential retrieval of the password.

Learn more about our Web Application Penetration Testing UK.