PYSEC-2021-342

See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/lxdui/PYSEC-2021-342.yaml
JSON Data
https://api.osv.dev/v1/vulns/PYSEC-2021-342
Aliases
Published
2021-09-03T02:15:00Z
Modified
2024-04-22T22:56:31.968456Z
Summary
[none]
Details

A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system.

References

Affected packages

PyPI / lxdui

Package

Name
lxdui
View open source insights on deps.dev
Purl
pkg:pypi/lxdui

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0.1