VYPR

USB Pratirodh

by Usb Pratirodh Project

CVEs (3)

  • CVE-2017-6895CriMar 23, 2017
    risk 0.64cvss 9.8epss 0.03

    USB Pratirodh allows remote attackers to conduct XML External Entity (XXE) attacks via XML data in usb.xml.

  • CVE-2024-1224HigMar 6, 2024
    risk 0.46cvss 7.1epss 0.00

    This vulnerability exists in USB Pratirodh due to the usage of a weaker cryptographic algorithm (hash) SHA1 in user login component. A local attacker with administrative privileges could exploit this vulnerability to obtain the password of USB Pratirodh on the targeted system. …

  • CVE-2017-6911MedMar 23, 2017
    risk 0.43cvss 6.6epss 0.01

    USB Pratirodh is prone to sensitive information disclosure. It stores sensitive information such as username and password in simple usb.xml. An attacker with physical access to the system can modify the file according his own requirements that may aid in further attack.