An issue was discovered in portier vision 4.4.4.2 and 4.4.4.6. Passwords are stored using reversible encryption rather than as a hash value, and the used Vigenere algorithm is badly outdated. Moreover, the encryption key is static and too short. Due to this, the passwords stored by the application can be easily decrypted.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-03-19T17:26:02

Updated: 2024-08-04T20:01:52.291Z

Reserved: 2019-01-08T00:00:00

Link: CVE-2019-5723

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2019-03-21T16:01:05.733

Modified: 2021-07-21T11:39:23.747

Link: CVE-2019-5723

cve-icon Redhat

No data.