Critical severity9.8NVD Advisory· Published Sep 3, 2021· Updated Jun 17, 2026
CVE-2021-40494
CVE-2021-40494
Description
A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
lxduiPyPI | <= 2.1.3 | — |
Affected products
2- AdaptiveScale/LXDUIdescription
Patches
Vulnerability mechanics
References
5- github.com/AdaptiveScale/lxdui/pull/353nvdThird Party AdvisoryWEB
- github.com/advisories/GHSA-p4xh-4869-8vrgghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-40494ghsaADVISORY
- github.com/AdaptiveScale/lxdui/commit/e4bffeb9d69a5700a642cb6424453d1894e50d84ghsaWEB
- github.com/pypa/advisory-database/tree/main/vulns/lxdui/PYSEC-2021-342.yamlghsaWEB
News mentions
0No linked articles in our index yet.