CVEbaza.plSłownik CWECWE-760
Common Weakness Enumeration

CWE-760

Use of a One-Way Hash with a Predictable Salt

Kategoria: VariantCVE: 10
Opis

Produkt używa jednokierunkowej funkcji skrótu kryptograficznego dla danych, które powinny być nieodwracalne, takich jak hasło, ale wykorzystuje przewidywalną sól jako część wejścia. Spowoduje to osłabienie bezpieczeństwa funkcji skrótu i ułatwienie ataku słownikowego.

Description (EN)

The product uses a one-way cryptographic hash against an input that should not be reversible, such as a password, but the product uses a predictable salt as part of the input.

Podatności CVE z CWE-760 (10)
7.5
CVSS
HIGH
CVE-2024-38881

An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to perform a Rainbow Table Password cracking attack due to the use of one-way hashes without salts when storing user passwords.

pub. 2024-08-02
7.0
CVSS
HIGH
CVE-2023-22599

InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-S-V2.3.0.r5542, contain vulnerability CWE-760: Use of a One-way Hash with a Predictable Salt. They  send MQTT credentials in response to HTTP/HTTPS requests from the cloud platform. These credentials are encoded using a hardcoded string into an MD5 hash. This string could be easily calculated by an unauthorized user who spoofed sending an HTTP/HTTPS request to the devices. This could result in the affected devices being temporarily disconnected from the cloud platform and allow the user to receive MQTT commands with potentially sensitive information.

pub. 2023-01-12
6.1
CVSS
MEDIUM
CVE-2024-13951

One way hash with predictable salt vulnerabilities in ASPECT may expose sensitive information to a potential attackerThis issue affects ASPECT-Enterprise: through 3.*; NEXUS Series: through 3.*; MATRIX Series: through 3.*.

pub. 2025-05-22
6.0
CVSS
MEDIUM
CVE-2025-9290

An authentication weakness was identified in Omada Controllers, Gateways and Access Points, controller-device adoption due to improper handling of random values. Exploitation requires advanced network positioning and allows an attacker to intercept adoption traffic and forge valid authentication through offline precomputation, potentially exposing sensitive information and compromising confidentiality.

pub. 2026-01-23
6.0
CVSS
MEDIUM
CVE-2025-26486

Broken or Risky Cryptographic Algorithm, Use of Password Hash With Insufficient Computational Effort, Use of Weak Hash, Use of a One-Way Hash with a Predictable Salt vulnerabilities in Beta80 "Life 1st Identity Manager" enable an attacker with access to password hashes to bruteforce user passwords or find a collision to ultimately while attempting to gain access to a target application that uses "Life 1st Identity Manager" as a service for authentication. This issue affects Life 1st: 1.5.2.14234.

pub. 2025-03-19
5.5
CVSS
MEDIUM
CVE-2020-28214

A CWE-760: Use of a One-Way Hash with a Predictable Salt vulnerability exists in Modicon M221 (all references, all versions), that could allow an attacker to pre-compute the hash value using dictionary attack technique such as rainbow tables, effectively disabling the protection that an unpredictable salt would provide.

pub. 2020-12-11
5.3
CVSS
MEDIUM
CVE-2021-38314

The Gutenberg Template Library & Redux Framework plugin <= 4.2.11 for WordPress registered several AJAX actions available to unauthenticated users in the `includes` function in `redux-core/class-redux-core.php` that were unique to a given site but deterministic and predictable given that they were based on an md5 hash of the site URL with a known salt value of '-redux' and an md5 hash of the previous hash with a known salt value of '-support'. These AJAX actions could be used to retrieve a list of active plugins and their versions, the site's PHP version, and an unsalted md5 hash of site’s `AUTH_KEY` concatenated with the `SECURE_AUTH_KEY`.

pub. 2021-09-02
4.9
CVSS
MEDIUM
CVE-2026-46749

A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The affected application uses a password hashing implementation with a static, hardcoded salt shared across all users and installations, and is configured with an insufficient number of iterations. This could allow an attacker to efficiently recover user passwords using brute-force or precomputed attacks, potentially resulting in unauthorized access.

pub. 2026-06-09
2.9
CVSS
LOW
CVE-2026-9370

W bibliotece jasypt-spring-boot do wersji 3.0.5/4.0.4 odkryto podatność w funkcji getSecretKeySaltGenerator w pliku SimpleGCMConfig.java komponentu Password Hash Handler. Podatność pozwala na użycie one-way hash z przewidywalnym salt'em. Atak może być przeprowadzony zdalnie, wymaga wysokiego poziomu złożoności i jest trudny do eksploatacji, jednak exploit został już ujawniony publicznie.

pub. 2026-05-24
2.9
CVSS
LOW
CVE-2018-5552

Versions of DocuTrac QuicDoc and Office Therapy that ship with DTISQLInstaller.exe version 1.6.4.0 and prior contains a hard-coded cryptographic salt, "S@l+&pepper".

pub. 2018-03-19
Informacje
ID: CWE-760
Typ: Variant
Podatności: 10
MITRE CWE ↗
← Słownik CWE
CWE-760 — Użycie jednokierunkowej funkcji skrótu z przewidywalną solą | Słownik CWE | CVEbaza.pl