CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
Confidence
Low
EPSS
Percentile
5.1%
The geli encryption provider 7 before r239184 on FreeBSD 10 uses a weak Master Key, which makes it easier for local users to defeat a cryptographic protection mechanism via a brute-force attack.
Vendor | Product | Version | CPE |
---|---|---|---|
pawel_jakub_dawidek | geli | * | cpe:2.3:a:pawel_jakub_dawidek:geli:*:*:*:*:*:*:*:* |
pawel_jakub_dawidek | geli | 4 | cpe:2.3:a:pawel_jakub_dawidek:geli:4:*:*:*:*:*:*:* |
freebsd | freebsd | 10.0 | cpe:2.3:o:freebsd:freebsd:10.0:*:*:*:*:*:*:* |