Bludit uses the SHA-1 hashing algorithm to compute password hashes. Thus, attackers could determine cleartext passwords with brute-force attacks due to the inherent speed of SHA-1. In addition, the salt that is computed by Bludit is generated with a non-cryptographically secure function.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: NCSC.ch
Published: 2024-06-24T07:10:03.585Z
Updated: 2024-08-01T23:19:52.892Z
Reserved: 2024-01-25T14:02:00.526Z
Link: CVE-2024-24553
Vulnrichment
Updated: 2024-08-01T23:19:52.892Z
NVD
Status : Awaiting Analysis
Published: 2024-06-24T07:15:15.063
Modified: 2024-11-21T08:59:24.207
Link: CVE-2024-24553
Redhat
No data.