CVE-2023-30797

Published
View on NVD ↗
CVSS v3
7.5
HIGH
CVSS v2
N/A
Affected
2
PROJECTS

Description

Netflix Lemur before version 1.3.2 used insufficiently random values when generating default credentials. The insufficiently random values may allow an attacker to guess the credentials and gain access to resources managed by Lemur.

Netflix/security-bulletins
Netflix/security-bulletins
Security Bulletins that relate to Netflix Open Source
GitHubGitHub
746
Netflix/lemur
Netflix/lemur
Repository for the Lemur Certificate Manager
GitHubGitHub
1.77K