Lucene search
K

10 matches found

EUVD
EUVD
added 2025/12/09 6:30 p.m.4 views

EUVD-2025-201892

A high privileged remote attacker with admin privileges for the webUI can brute-force the "root" and "user" passwords of the underlying OS due to a weak password generation algorithm...

6.8CVSS6.4AI score0.0025EPSS
Exploits0References2
OSV
OSV
added 2025/12/09 4:17 p.m.5 views

CVE-2025-41692

A high privileged remote attacker with admin privileges for the webUI can brute-force the "root" and "user" passwords of the underlying OS due to a weak password generation algorithm...

6.8CVSS5.8AI score0.0025EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 8:12 a.m.28 views

CVE-2025-41692 Weak/Predictable root Password

A high privileged remote attacker with admin privileges for the webUI can brute-force the "root" and "user" passwords of the underlying OS due to a weak password generation algorithm...

6.8CVSS0.0025EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/09 8:12 a.m.3 views

CVE-2025-41692 Weak/Predictable root Password

A high privileged remote attacker with admin privileges for the webUI can brute-force the "root" and "user" passwords of the underlying OS due to a weak password generation algorithm...

6.8CVSS6.6AI score0.0025EPSS
Exploits0References1
CVE
CVE
added 2025/12/09 8:12 a.m.12 views

CVE-2025-41692

CVE-2025-41692 describes a high-privilege remote attack against a webUI where an admin user can brute-force the underlying OS root and user passwords due to a weak password generation algorithm. Connected sources (Red Hat and NVD/NVD-derived entries) indicate potential downstream risks: separate ...

6.8CVSS6.2AI score0.0025EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-49811

A high privileged remote attacker with admin privileges for the webUI can brute-force the "root" and "user" passwords of the underlying OS due to a weak password generation algorithm...

6.8CVSS6.9AI score0.0025EPSS
Exploits0References1
NVD
NVD
added 2022/06/02 2:15 p.m.17 views

CVE-2022-29729

Verizon 4G LTE Network Extender GA4.38 - V0.4.038.2131 utilizes a weak default admin password generation algorithm which generates passwords that are accessible to unauthenticated attackers via the webUI login page...

7.5CVSS0.01418EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2021/12/27 12:0 a.m.10 views

PT-2021-16397 · WordPress · Simple Jwt Login

Name of the Vulnerable Software and Affected Versions: Simple JWT Login WordPress plugin versions prior to 3.3.0 Description: The issue allows creation of new WordPress user accounts with a randomly generated password. The password generation uses the str shuffle PHP function, which does not...

7.5CVSS7.6AI score0.01186EPSS
Exploits0References4
OSV
OSV
added 2017/03/23 8:59 p.m.6 views

CVE-2015-8626

The User::randomPassword function in MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 generates passwords smaller than $wgMinimalPasswordLength, which makes it easier for remote attackers to obtain access via a brute-force attack...

9.8CVSS9.2AI score
Exploits0References10
securityvulns
securityvulns
added 2001/04/11 12:0 a.m.53 views

Дырка в Strip под Palm (weak password generation)

Слабый алгоритм генерации паролей позволяет слишком маленькое число различных комбинаций...

0.9AI score
Exploits0References1Affected Software1
Rows per page
Query Builder