CyberRota
← Ana sayfaya dön

CVE-2026-11347

UNKNOWN · CVSS N/A EPSS %0.07

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-05T11:16:34.627 · Çekilme zamanı: 2026-06-30T12:11:17.150179+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-11347
Severity
UNKNOWN
CVSS
N/A
EPSS
%0.07

Orijinal NVD Açıklaması

The linqi application contains hardcoded cryptographic keys. Additionally, the application uses a weak algorithm with a limited ASCII charset to dynamically generate Initialization Vectors (IVs) for AES/CBC encryption, making known-plaintext attacks feasible. An attacker with local access can leverage these vulnerabilities to decrypt sensitive obfuscated strings, including ConnectionString values containing database credentials from appsettings.json.