Описание
The kickstart file in Red Hat QuickStart Cloud Installer (QCI) forces use of MD5 passwords on deployed systems, which makes it easier for attackers to determine cleartext passwords via a brute-force attack.
Ссылки
- Third Party Advisory
- Issue TrackingVDB EntryVendor Advisory
- Third Party Advisory
- Issue TrackingVDB EntryVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:redhat:quickstart_cloud_installer:-:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:-:*:*:*:*:*:*:*
EPSS
Процентиль: 32%
0.00125
Низкий
8.4 High
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-254
Связанные уязвимости
CVSS3: 1.9
redhat
больше 9 лет назад
The kickstart file in Red Hat QuickStart Cloud Installer (QCI) forces use of MD5 passwords on deployed systems, which makes it easier for attackers to determine cleartext passwords via a brute-force attack.
CVSS3: 8.4
github
больше 3 лет назад
The kickstart file in Red Hat QuickStart Cloud Installer (QCI) forces use of MD5 passwords on deployed systems, which makes it easier for attackers to determine cleartext passwords via a brute-force attack.
EPSS
Процентиль: 32%
0.00125
Низкий
8.4 High
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-254