Use of a broken or risky cryptographic algorithm in Netatalk - #VU137338
Published: July 12, 2026
Netatalk
Detailed vulnerability description
The vulnerability allows a remote attacker to disclose sensitive information.
The vulnerability exists due to use of a broken or risky cryptographic algorithm in the DHCAST128 UAM when performing password authentication. A remote attacker can observe the authentication exchange to disclose sensitive information.
A 16-byte hardcoded Diffie-Hellman prime makes passive password recovery trivially solvable.