Unrated severityNVD Advisory· Published Oct 7, 2021· Updated Sep 16, 2024
Integria IMS incorrect authorization
CVE-2021-3833
Description
Integria IMS login check uses a loose comparator ("==") to compare the MD5 hash of the password provided by the user and the MD5 hash stored in the database. An attacker with a specific formatted password could exploit this vulnerability in order to login in the system with different passwords.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Ártica/Integria IMSv5Range: 5.0.92
Patches
Vulnerability mechanics
References
2- integriaims.com/en/services/updates/mitrex_refsource_CONFIRM
- www.incibe.es/en/incibe-cert/notices/aviso/integria-ims-incorrect-authorizationmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.