QwikSec

Security Database

CVE

CWE

Training

CVE-2019-5723

Published: Mar 19, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

An issue was discovered in portier vision 4.4.4.2 and 4.4.4.6. Passwords are stored using reversible encryption rather than as a hash value, and the used Vigenere algorithm is badly outdated. Moreover, the encryption key is static and too short. Due to this, the passwords stored by the application can be easily decrypted.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://packetstormsecurity.com/files/151118/PORTIER-4.4.4.2-4.4.4.6-Cryptographic-Issues.html

x_refsource_MISC

20190111 [SYSS-2018-011] Portier - Cryptographic Issues

mailing-list

x_refsource_BUGTRAQ

https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2018-011.txt

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.