Netflix Lemur before version 1.3.2 used insufficiently random values when generating default credentials. The insufficiently random values may allow an attacker to guess the credentials and gain access to resources managed by Lemur.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: VulnCheck
Published: 2023-04-19T19:10:12.523Z
Updated: 2024-08-02T14:37:15.447Z
Reserved: 2023-04-18T10:31:45.962Z
Link: CVE-2023-30797
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-04-19T20:15:12.377
Modified: 2024-11-21T08:00:55.260
Link: CVE-2023-30797
Redhat
No data.