CVE-2021-23126
Description
An issue was discovered in Joomla! 3.2.0 through 3.9.24. Usage of the insecure rand() function within the process of generating the 2FA secret.
CWE
- (none)
Affected
- Joomla! Project / Joomla! CMS — v=3.2.0-3.9.24 [affected]
CVSS
- (none)
References
- https://developer.joomla.org/security-centre/841-20210301-core-insecure-randomness-within-2fa-secret-generation.html x_refsource_MISC, vendor-advisory
Source
cvelistV5-main/cves/2021/23xxx/CVE-2021-23126.json