A weak password requirement vulnerability exists in the Create New User function of MintHCM RELEASE 3.0.8, which could lead an attacker to easier password brute-forcing.
References
Link | Resource |
---|---|
https://github.com/C1inton/CVE-Record/blob/master/CVE%20Record/%5BCVE-2021-25839%5DMintHCM%203.0.8.md | Exploit Third Party Advisory |
https://minthcm.org/ | Product |
Configurations
History
06 May 2021, 21:17
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-521 | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 9.8 |
References | (MISC) https://github.com/C1inton/CVE-Record/blob/master/CVE%20Record/%5BCVE-2021-25839%5DMintHCM%203.0.8.md - Exploit, Third Party Advisory | |
References | (MISC) https://minthcm.org/ - Product | |
CPE | cpe:2.3:a:minthcm:minthcm:3.0.8:*:*:*:*:*:*:* |
26 Apr 2021, 14:37
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-04-26 14:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-25839
Mitre link : CVE-2021-25839
CVE.ORG link : CVE-2021-25839
JSON object : View
Products Affected
minthcm
- minthcm
CWE
CWE-521
Weak Password Requirements