CVE-2018-18325: DotNetNuke (DNN) Inadequate Encryption Strength

DotNetNuke (DNN) Inadequate Encryption Strength Vulnerability. DotNetNuke (DNN) contains an inadequate encryption strength vulnerability resulting from the use of a weak encryption algorithm to protect input parameters. This CVE ID resolves an incomplete patch for CVE-2018-15811.

• CISA KEV-listed (remediation due 2022-05-03)
• EPSS 92.9% (99.8% percentile)

Browse the CVE database

Read the full analysis on IntelFusions