Tag

#hardcoded cryptographic keys

In-Depth Analysis of CVE-2026-11347: Hardcoded Cryptographic Keys and Weak IV Generation in linqi Application

The linqi application contains hardcoded cryptographic keys and uses a weak algorithm to generate Initialization Vectors (IVs) for AES/CBC encryption, making it vulnerable to known-plaintext attacks and allowing local attackers to decrypt sensitive data, including database credentials.

Jun 7, 20261 source