Описание
lib/util/miq-password.rb in Red Hat CloudForms 3.0 Management Engine (CFME) before 5.2.4.2 uses a hard-coded salt, which makes it easier for remote attackers to guess passwords via a brute force attack.
Дополнительная информация
Статус:
Low
Дефект:
CWE-321
https://bugzilla.redhat.com/show_bug.cgi?id=1107853CFME: Default salt value in miq-password.rb
1.9 Low
CVSS2
Связанные уязвимости
nvd
больше 11 лет назад
lib/util/miq-password.rb in Red Hat CloudForms 3.0 Management Engine (CFME) before 5.2.4.2 uses a hard-coded salt, which makes it easier for remote attackers to guess passwords via a brute force attack.
github
больше 3 лет назад
lib/util/miq-password.rb in Red Hat CloudForms 3.0 Management Engine (CFME) before 5.2.4.2 uses a hard-coded salt, which makes it easier for remote attackers to guess passwords via a brute force attack.
1.9 Low
CVSS2