VYPR
Unrated severityNVD Advisory· Published Feb 6, 2026· Updated Feb 6, 2026

Use of Hard-Coded Cryptographic Key for Password Storage

CVE-2026-2103

Description

Infor SyteLine ERP uses hard-coded static cryptographic keys to encrypt stored credentials, including user passwords, database connection strings, and API keys. The encryption keys are identical across all installations. An attacker with access to the application binary and database can decrypt all stored credentials.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Infor/SyteLine ERPllm-create2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 10.0.8803.16889

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.