3 matches found
CVE-2023-2160
Weak Password Requirements in GitHub repository modoboa/modoboa prior to 2.1.0...
modoboa-automua (=1.0.0) potentially affected by CVE-2023-2160 via modoboa (=1.17.0)
modoboa PYPI version =1.17.0 is affected by a known vulnerability. The following packages have a transitive dependency on modoboa and may be impacted: - modoboa-automua =1.0.0 Source cves: CVE-2023-2160 Source advisory: OSV:PYSEC-2023-34...
CVE-2023-2160
The CVE pertains to modoboa/modoboa with weak password requirements prior to version 2.1.0. Several connected sources confirm that users could set unsafe passwords (e.g., 1, HACK) due to weak password policy, and that this was fixed in commit 130257c96a2392ada795785a91178e656e27015c and is addres...