Lucene search
K

144 matches found

OSV
OSV
added 2021/08/31 10:15 p.m.29 views

CVE-2021-22003

VMware Workspace ONE Access and Identity Manager, unintentionally provide a login interface on port 7443. A malicious actor with network access to port 7443 may attempt user enumeration or brute force the login endpoint, which may or may not be practical based on lockout policy configuration and...

7.5CVSS7AI score0.00994EPSS
Exploits0References1
Prion
Prion
added 2021/08/31 10:15 p.m.18 views

Default credentials

VMware Workspace ONE Access and Identity Manager, unintentionally provide a login interface on port 7443. A malicious actor with network access to port 7443 may attempt user enumeration or brute force the login endpoint, which may or may not be practical based on lockout policy configuration and...

5CVSS8AI score0.00994EPSS
Exploits0References1Affected Software4
Cvelist
Cvelist
added 2021/08/31 9:2 p.m.22 views

CVE-2021-22003

VMware Workspace ONE Access and Identity Manager, unintentionally provide a login interface on port 7443. A malicious actor with network access to port 7443 may attempt user enumeration or brute force the login endpoint, which may or may not be practical based on lockout policy configuration and...

8.3AI score0.00994EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2021/05/21 12:15 p.m.44 views

CVE-2021-3563

A flaw was found in openstack-keystone. Only the first 72 characters of an application secret are verified allowing attackers bypass some password complexity which administrators may be counting on. The highest threat from this vulnerability is to data confidentiality and integrity...

7.4CVSS5AI score0.01319EPSS
Exploits1References4
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/04/22 4:0 p.m.42 views

Evolving beyond password complexity as an identity strategy

The security community is continuously changing, growing, and learning from each other to better position the world against cyber threats. In the latest Voice of the Community blog series post, Microsoft Product Marketing Manager Natalia Godyla talks with Troy Hunt, founder of Have I Been Pwned,...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/02/22 12:0 a.m.19 views

EulerOS 2.0 SP2 : samba (EulerOS-SA-2021-1357)

According to the versions of the samba packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in Samba, all versions starting samba 4.5.0 before samba 4.9.15, samba 4.10.10, samba 4.11.2, in the way it handles a user...

8.1CVSS6.7AI score0.05118EPSS
Exploits1References8
BDU FSTEC
BDU FSTEC
added 2021/01/20 12:0 a.m.19 views

The vulnerability of the TrueConf software, related to insufficient requirements for password complexity, allows a hacker to gain access to the user account.

The vulnerability of the TrueConf software is related to insufficient requirements for the complexity of passwords. Exploiting this vulnerability can allow a malicious actor to gain access to user accounts by guessing passwords...

8.1CVSS5.3AI score
Exploits0Affected Software2
Prion
Prion
added 2020/12/23 3:15 p.m.13 views

Design/Logic Flaw

In Solstice Pod before 3.3.0 or Open4.3, the Administrator password can be enumerated using brute-force attacks via the /Config/service/initModel?password= Solstice Open Control API because there is no complexity requirement e.g., it might be all digits or all lowercase letters...

5CVSS7.7AI score0.01352EPSS
Exploits1References3Affected Software1
OpenVAS
OpenVAS
added 2020/11/20 12:0 a.m.10 views

GaussDB Kernel: Configuring the Password Complexity Check

For database security purposes, password complexity is checked during user creation and password changes. Passwords not meeting complexity requirements are not allowed in GaussDB Kernel. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources,...

7.6AI score
Exploits0
OpenVAS
OpenVAS
added 2020/11/11 12:0 a.m.12 views

openGauss: Configuring the Password Complexity Check

For database security purposes, password complexity is checked during user creation and password changes. Passwords not meeting complexity requirements are not allowed in openGauss. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and a...

7.6AI score
Exploits0References1
Veracode
Veracode
added 2020/08/06 9:35 p.m.41 views

Dictionary Attacks

samba is vulnerable to dictionary attacks. The vulnerability exists in the way it handles a user password change or a new password for a samba user. The Samba Active Directory Domain Controller can be configured to use a custom script to check for password complexity. This configuration can fail ...

5.4CVSS1.6AI score0.02084EPSS
Exploits0References12Affected Software1
OpenVAS
OpenVAS
added 2020/07/14 12:0 a.m.7 views

Huawei Data Communication: Configuring User Password Complexity Check

The system checks the password complexity when setting a user password. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0
OpenVAS
OpenVAS
added 2020/05/14 12:0 a.m.5 views

Huawei Data Communication: SNMP agent usm-user password complexity check

Configure password complexity check for SNMPv3 users. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.6AI score
Exploits0
NVD
NVD
added 2020/04/02 8:15 p.m.27 views

CVE-2019-19093

eSOMS versions 4.0 to 6.0.3 do not enforce password complexity settings, potentially resulting in lower access security due to insecure user passwords...

6.5CVSS6.7AI score0.00832EPSS
Exploits0References1
OSV
OSV
added 2020/04/02 8:15 p.m.4 views

CVE-2019-19093

eSOMS versions 4.0 to 6.0.3 do not enforce password complexity settings, potentially resulting in lower access security due to insecure user passwords...

6.5CVSS6.6AI score0.00832EPSS
Exploits0References1
Prion
Prion
added 2020/04/02 8:15 p.m.17 views

Design/Logic Flaw

eSOMS versions 4.0 to 6.0.3 do not enforce password complexity settings, potentially resulting in lower access security due to insecure user passwords...

6.4CVSS6.6AI score0.00832EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/04/02 7:47 p.m.24 views

CVE-2019-19093 ABB eSOMS: Password complexity issue

eSOMS versions 4.0 to 6.0.3 do not enforce password complexity settings, potentially resulting in lower access security due to insecure user passwords...

6.5CVSS6.6AI score0.00832EPSS
Exploits0References1
CVE
CVE
added 2020/04/02 7:47 p.m.54 views

CVE-2019-19093

CVE-2019-19093 affects ABB eSOMS,具体ly versions 4.0–6.0.3, where password complexity settings are not enforced. The root cause is weak password requirements, leading to insecure user credentials and potential impact to confidentiality and integrity. The connected documents confirm this CWE-521 wea...

6.5CVSS6.7AI score0.00832EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2020/04/02 2:5 p.m.33 views

CVE-2019-14833

A flaw was found in Samba in the way it handles a user password change or a new password for a samba user. The Samba Active Directory Domain Controller can be configured to use a custom script to check for password complexity. This configuration can fail to verify password complexity when non-ASC...

5.4CVSS1.3AI score0.02084EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2020/04/02 12:0 a.m.6 views

PT-2020-10042 · Esoms · Esoms

Name of the Vulnerable Software and Affected Versions: eSOMS versions 4.0 to 6.0.3 Description: The issue is related to the lack of password complexity settings enforcement, potentially leading to lower access security due to insecure user passwords. Recommendations: For eSOMS versions 4.0 to...

6.5CVSS6.4AI score0.00832EPSS
Exploits0References4
Rows per page
Query Builder