CNNVD-202508-650 Information
CNNVD ID
CNNVD-202508-650
Related CVE
- CNNVD Published: 2025-08-07
Description (Chinese)
Thinbus Javascript Secure Remote Password是Simon Massey个人开发者的一个安全远程密码实现程序。 Thinbus Javascript Secure Remote Password 2.0.0及之前版本存在安全特征问题漏洞,该漏洞源于协议合规性问题导致熵值不足。
Description (English)
Thinbus Javascript Security Remote Password is a secure remote password realization program for Simon Massey’s personal developer. Thinbus Javascript Security Remote Password 2.0 and previous versions had a security feature gap, which stemmed from the lack of entropy as a result of compliance problems.
Hazard Level
High
Vulnerability Type
安全特征问题
Affected Vendor
个人开发者
Published
2025-08-07
Last Modified
2026-02-24
References
https://github.com/simbo1905/thinbus-srp-npm/issues/28 https://github.com/simbo1905/thinbus-srp-npm/pull/30/commits/4aeaea2366e090765a8204059c7bcf3616438d31 https://github.com/simbo1905/thinbus-srp-npm/security/advisories/GHSA-8q6v-474h-whgg
Patch
https://github.com/simbo1905/thinbus-srp-npm/releases
Share on: