6.2 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.005 Low
EPSS
Percentile
75.4%
Password Generator (aka Pwgen) before 2.07 generates weak non-tty passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack.
CPE | Name | Operator | Version |
---|---|---|---|
pwgen_project:pwgen | pwgen project pwgen | le | 2.06 |
advisories.mageia.org/MGASA-2014-0535.html
lists.fedoraproject.org/pipermail/package-announce/2014-December/146015.html
lists.fedoraproject.org/pipermail/package-announce/2014-December/146237.html
lists.fedoraproject.org/pipermail/package-announce/2014-December/146285.html
sourceforge.net/p/pwgen/code/ci/00118ccac4656adb028504639b313d7b09e62b79/
www.mandriva.com/security/advisories?name=MDVSA-2015:008
www.openwall.com/lists/oss-security/2013/06/06/1
www.openwall.com/lists/oss-security/2013/10/16/15