Описание
Sharp Zaurus PDA SL-5000D and SL-5500 uses a salt of "A0" to encrypt the screen-locking password as stored in the Security.conf file, which makes it easier for local users to guess the password via brute force methods.
Ссылки
- Broken LinkThird Party AdvisoryVDB Entry
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:sharp:zaurus_sl-5000d_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:zaurus_sl-5000d:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:sharp:zaurus_sl-5500_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:zaurus_sl-5500:-:*:*:*:*:*:*:*
EPSS
Процентиль: 20%
0.00064
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-326
CWE-326
Связанные уязвимости
CVSS3: 5.5
github
больше 3 лет назад
Sharp Zaurus PDA SL-5000D and SL-5500 uses a salt of "A0" to encrypt the screen-locking password as stored in the Security.conf file, which makes it easier for local users to guess the password via brute force methods.
EPSS
Процентиль: 20%
0.00064
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-326
CWE-326