CVE-2024-36823

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-36823

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-36823.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-36823

Aliases

GHSA-92wp-jghr-hh87

Downstream

UBUNTU-CVE-2024-36823

Published

2024-06-06T22:15:10.853Z

Modified

2025-11-20T12:26:46.730638Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

The encrypt() function of Ninja Core v7.0.0 was discovered to use a weak cryptographic algorithm, leading to a possible leakage of sensitive information.

References

https://github.com/ninjaframework/ninja/issues

Affected packages

Git / github.com/ninjaframework/ninja

Affected ranges

Type: GIT
Repo: https://github.com/ninjaframework/ninja
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

97844bd90e003a50af35fd553f1f69448d649de3

Affected versions

1.*

1.2

4.*

4.0.0

ninja-0.*

ninja-0.4

ninja-0.4.1

ninja-0.5

ninja-0.5.1

ninja-0.5.10

ninja-0.5.2

ninja-0.5.3

ninja-0.5.4

ninja-0.5.5

ninja-0.5.6

ninja-0.5.7

ninja-0.5.8

ninja-0.5.9

ninja-1.*

ninja-1.0

ninja-1.0.1

ninja-1.0.2

ninja-1.0.3

ninja-1.0.5

ninja-1.0.6

ninja-1.0.7

ninja-1.0.8

ninja-1.1

ninja-1.2.1

ninja-1.3

ninja-1.4

ninja-1.4.1

ninja-1.4.2

ninja-1.4.3

ninja-1.4.4

ninja-1.5

ninja-1.5.1

ninja-1.6.0

ninja-1.6.0-rc1

ninja-2.*

ninja-2.0.0

ninja-2.0.0-rc1

ninja-2.0.0-rc2

ninja-2.0.1

ninja-2.1.0

ninja-2.2.0

ninja-2.3.0

ninja-2.4.0

ninja-2.5.0

ninja-2.5.1

ninja-3.*

ninja-3.0.0

ninja-3.0.0-rc1

ninja-3.0.0-rc2

ninja-3.0.1

ninja-3.0.2

ninja-3.0.3

ninja-3.1.0

ninja-3.1.1

ninja-3.1.2

ninja-3.1.3

ninja-3.1.4

ninja-3.1.5

ninja-3.1.6

ninja-3.2.0

ninja-3.3.0

ninja-3.3.1

ninja-3.3.3

ninja-4.*

ninja-4.0.0

ninja-4.0.1

ninja-4.0.2

ninja-4.0.3

ninja-4.0.4

ninja-4.0.5

ninja-4.0.6

ninja-5.*

ninja-5.1.0

ninja-5.1.1

ninja-5.1.2

ninja-5.1.3

ninja-5.1.4

ninja-5.1.5

ninja-5.1.6

ninja-5.2.0

ninja-5.2.1

ninja-5.2.2

ninja-5.3.0

ninja-5.3.1

ninja-5.4.0

ninja-5.5.0

ninja-5.6.0

ninja-5.7.0

ninja-5.8.0

ninja-6.*

ninja-6.0.0

ninja-6.0.0-beta1

ninja-6.0.0-beta2

ninja-6.0.0-beta3

ninja-6.0.0-rc1

ninja-6.1.0

ninja-6.2.0

ninja-6.2.1

ninja-6.2.2

ninja-6.4.0

ninja-6.4.1

ninja-6.4.2

ninja-6.5.0

ninja-6.6.0

ninja-6.6.1

ninja-6.7.0

ninja-6.8.0

ninja-6.8.1

ninja-6.9.0

ninja-7.*

ninja-7.0.0

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-36823.json"