| Titre | editso fuso dev CWE-326: Inadequate Encryption Strength |
|---|
| Description | In file src/net/penetrate/handshake/mod.rs
let priv_key = rsa::RsaPrivateKey::new(&mut rand::thread_rng(), 1024)?;
The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required. |
|---|
| La source | ⚠️ https://github.com/editso/fuso/blob/refactor/dev/src/net/penetrate/handshake/mod.rs |
|---|
| Utilisateur | dev03301 (UID 88717) |
|---|
| Soumission | 15/08/2025 10:51 (il y a 10 mois) |
|---|
| Modérer | 26/08/2025 22:44 (11 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 321506 [editso fuso jusqu’à 1.0.4-beta.7 mod.rs PenetrateRsaAndAesHandshake priv_key chiffrement faible] |
|---|
| Points | 18 |
|---|