exploitDog

CVE-2018-9057

Опубликовано: 02 апр. 2022

Источник: msrc

CVSS3: 9.8

EPSS Низкий

Описание

Описание отсутствует

EPSS

Процентиль: 64%

0.00465

Низкий

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2018-9057

CVSS3: 9.8

nvd

почти 8 лет назад

aws/resource_aws_iam_user_login_profile.go in the HashiCorp Terraform Amazon Web Services (AWS) provider through v1.12.0 has an inappropriate PRNG algorithm and seeding, which makes it easier for remote attackers to obtain access by leveraging an IAM account that was provisioned with a weak password.

GHSA-r48h-jr2j-9g78

CVSS3: 9.8

github

больше 3 лет назад

HashiCorp Terraform Amazon Web Services (AWS) uses an insecure PRNG

EPSS

Процентиль: 64%

0.00465

Низкий

9.8 Critical

CVSS3