CVE-2024-8453

Summary

CVE-2024-8453 is a vulnerability affecting certain switch models from PLANET Technology. The issue arises due to the use of an insecure hashing function to store user passwords without the application of salt. This weakened security measure allows remote administrators to gain access to configuration files that contain these unsalted hash values. By obtaining these hashes, attackers may be able to successfully crack the passwords and gain unauthorized access to the affected network devices. This vulnerability poses a significant risk, highlighting the importance of securing and salting password hashes to prevent unauthorized access.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.