CVE-1999-1444
CVSS 2.0 Score 5.0 of 10 (medium)
Details
Summary
CVE-1999-1444 is a cybersecurity vulnerability affecting Alibaba version 2.0. The genkey utility in this software generates RSA key pairs with an exponent of 1, rendering the encryption ineffective. Consequently, transactions sent using these key pairs are transmitted in cleartext, posing a significant security risk to users. Attackers could intercept and read sensitive information, including login credentials and financial data, during transmission. It is essential for users to upgrade to a secure version of Alibaba to mitigate this vulnerability and protect against potential data breaches.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.