← voltar
CVE-2021-23127

[20210301] - Core - Insecure randomness within 2FA secret generation

EPSS 1.6%
An issue was discovered in Joomla! 3.2.0 through 3.9.24. Usage of an insufficient length for the 2FA secret accoring to RFC 4226 of 10 bytes vs 20 bytes.
Produtos afetados
Joomla! Project · Joomla! CMS

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://developer.joomla.org/security-centre/841-20210301-core-insecure-randomness-within-2fa-secret-generation.html