CVE-2021-27935

An issue was discovered in AdGuard before 0.105.2. An attacker able to get the user's cookie is able to bruteforce their password offline, because the hash of the password is stored in the cookie.
References
Link Resource
https://github.com/AdguardTeam/AdGuardHome/issues/2470 Issue Tracking Patch
Configurations

Configuration 1

cpe:2.3:a:adguard:adguard_home:*:*:*:*:*:*:*:*

Information

Published : 2021-03-03 08:15

Updated : 2022-07-12 05:42


NVD link : CVE-2021-27935

Mitre link : CVE-2021-27935

Products Affected
No products.
CWE