CVE-2021-40494

Use of Hard-coded Credentials in pypi/lxdui

Identifiers

CVE-2021-40494

Package Slug

pypi/lxdui

Vulnerability

Use of Hard-coded Credentials

Description

A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI allows attackers to gain admin access to the host system.

Affected Versions

All versions up to 2.1.3

Solution

Unfortunately, there is no solution available yet.

Last Modified

2021-09-16

source