2 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-8632
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In cloud-init through 19.4, randuserpassword in cloudinit/config/ccsetpasswords.py has a small default pwlen value, which makes it easier for attackers to guess...
Information Disclosure
cloud-init is vulnerable to information disclosure. The vulnerability exists as ccsetpassword in config/ccsetpasswords.py accepts a password with weak length...