Unrated severityNVD Advisory· Published Feb 13, 2019· Updated Sep 16, 2024

DSA-2019-022: Dell Wyse Password Encoder Hard-coded Cryptographic Key Vulnerability

CVE-2018-15781

Description

The Dell Wyse Password Encoder in ThinLinux2 versions prior to 2.1.0.01 contain a Hard-coded Cryptographic Key vulnerability. An unauthenticated remote attacker could reverse engineer the cryptographic system used in the Dell Wyse Password Encoder to discover the hard coded private key and decrypt locally stored cipher text.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Dell/Wyse Password Encoderllm-create2 versions
<2.1.0.01+ 1 more
- (no CPE)range: <2.1.0.01
- (no CPE)range: ThinLinux2
Dell/ThinLinux2llm-create
Range: <2.1.0.01

Patches

Vulnerability mechanics

No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.

References

www.dell.com/support/article/SLN316104mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000