2 matches found
CVE-2022-0652
Confd log files contain local users', including root’s, SHA512crypt password hashes with insecure access permissions. This allows a local attacker to attempt off-line brute-force attacks against these password hashes in Sophos UTM before version 9.710...
Multiple Huawei ME906 Products Information Disclosure Vulnerability
Huawei ME906 is a mobile internet module with M.2 which supports LTE, WCDMA, EVDO and GSM. Several Huawei ME906 products contain hashes of root accounts and passwords, allowing attackers to exploit vulnerabilities that can be cracked to obtain ROOT account password information...