{"uuid": "5ff0f37e-de13-457a-a789-b387fbb28a59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-36750", "type": "seen", "source": "https://t.me/cibsecurity/34494", "content": "\u203c CVE-2021-36750 \u203c\n\nENC DataVault 7.1.1W and VaultAPI v67, which is currently being used in various other applications, mishandles key derivation, making it easier for attackers to determine the passwords of all DataVault users (across USB drives sold under multiple brand names).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-22T16:18:20.000000Z"}