1Panel is an open source Linux server operation and maintenance management panel. The password verification in the source code uses the != symbol instead hmac.Equal. This may lead to a timing attack vulnerability. This vulnerability is fixed in 1.10.3-lts.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-04-18T14:56:56.270Z
Updated: 2024-08-02T01:32:05.409Z
Reserved: 2024-03-26T12:52:00.934Z
Link: CVE-2024-30257
Vulnrichment
Updated: 2024-08-02T01:32:05.409Z
NVD
Status : Awaiting Analysis
Published: 2024-04-18T15:15:30.043
Modified: 2024-11-21T09:11:34.003
Link: CVE-2024-30257
Redhat
No data.