216.73.217.172

CVE-2026-45701

· Published 01/06/2026 17:17 · Modified 01/06/2026 18:16

Labels: CVE-2026-45701 2026-06-01CVE-2026-45701CWE-327[email protected]

Essential information

Published
01/06/2026 17:17
Modified
01/06/2026 18:16
Author
Creator
CVSS
6.9 MEDIUM (v3) 6.9 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Sulu is an open-source PHP content management system based on the Symfony framework. Prior to versions 2.6.23 and 3.0.6, the password reset tokenand API key generation uses a weak cryptographical hash algorithm. This issue has been patched in versions 2.6.23 and 3.0.6.

NVD status

Status
Deferred — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
sulu / sulu cpe:2.3:a:sulu:sulu:2.6.0-2.6.22:*:*:*:*:*:*:*
sulu / sulu cpe:2.3:a:sulu:sulu:3.0.0-3.0.5:*:*:*:*:*:*:*

References