CVE-2024-54143P2CRITICALCVSS 9.3fixed in 920c8a12024-12-06
CVE-2024-54143 [CRITICAL] CWE-328 CVE-2024-54143: openwrt/asu is an image on demand server for OpenWrt based distributions. The request hashing mechan
openwrt/asu is an image on demand server for OpenWrt based distributions. The request hashing mechanism truncates SHA-256 hashes to only 12 characters. This significantly reduces entropy, making it feasible for an attacker to generate collisions. By exploiting this, a previously built malicious image can be served in place of a legitimate one, all
nvd