exploitDog

CVE-2023-34240

Опубликовано: 27 июн. 2023

Источник: nvd

CVSS3: 6.5

CVSS3: 9.8

EPSS Низкий

Описание

Cloudexplorer-lite is an open source cloud software stack. Weak passwords can be easily guessed and are an easy target for brute force attacks. This can lead to an authentication system failure and compromise system security. Versions of cloudexplorer-lite prior to 1.2.0 did not enforce strong passwords. This vulnerability has been fixed in version 1.2.0. Users are advised to upgrade. There are no known workarounds for this vulnerability.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:fit2cloud:cloudexplorer_lite:*:*:*:*:*:*:*:*

Версия до 1.2.0 (исключая)

EPSS

Процентиль: 43%

0.00208

Низкий

6.5 Medium

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-521

EPSS

Процентиль: 43%

0.00208

Низкий

6.5 Medium

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-521