CVE-2018-18326

DNN (aka DotNetNuke) 9.2 through 9.2.2 incorrectly converts encryption key source values, resulting in lower than expected entropy. NOTE: this issue exists because of an incomplete fix for CVE-2018-15812.
Configurations

Configuration 1

cpe:2.3:a:dnnsoftware:dotnetnuke:*:*:*:*:*:*:*:*

Information

Published : 2019-07-03 05:15

Updated : 2020-08-24 05:37


NVD link : CVE-2018-18326

Mitre link : CVE-2018-18326

Products Affected
No products.
CWE
CWE-331

Insufficient Entropy