Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
owncloudOwnCloudOC-SA-2013-015
HistoryApr 11, 2013 - 11:42 a.m.

Server: Insecure database password generator

2013-04-1111:42:22
owncloud.org
39

EPSS

0.002

Percentile

51.9%

JSON

Due to using “time()” as random source in the ownCloud installation routine, the entropy of the generated PostgreSQL database user password is very low and can be easily guessed.

This issue is inside the ownCloud setup routine and is not related to any PostgreSQL vulnerability.

For more information please consult the official advisory.

This advisory is licensed CC BY-SA 4.0

Related

owncloud 1
cvelist 1
ubuntucve 1
cve 1
prion 1
nvd 1
openvas 1
owncloud
owncloud
Insecure database password generator - ownCloud
2013-04-11 17:57:48
cvelist
cvelist
CVE-2013-1941
2014-06-04 14:00:00
ubuntucve
ubuntucve
CVE-2013-1941
2014-06-04 00:00:00
cve
cve
CVE-2013-1941
2014-06-04 14:55:03
prion
prion
Design/Logic Flaw
2014-06-04 14:55:00
nvd
nvd
CVE-2013-1941
2014-06-04 14:55:03
openvas
openvas
ownCloud Multiple Vulnerabilities (oC-SA-2013-014, oC-SA-2013-015)
2014-07-03 00:00:00

EPSS

0.002

Percentile

51.9%

JSON
Related for OC-SA-2013-015
owncloud1cvelist1ubuntucve1cve1prion1nvd1openvas1