Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-2513

Опубликовано: 08 апр. 2016
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 2.6
CVSS3: 3.1

Описание

The password hasher in contrib/auth/hashers.py in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to enumerate users via a timing attack involving login requests.

РелизСтатусПримечание
devel

released

1.8.7-1ubuntu2
esm-infra-legacy/trusty

not-affected

1.6.1-2ubuntu0.12
precise

released

1.3.1-4ubuntu1.20
trusty

released

1.6.1-2ubuntu0.12
trusty/esm

not-affected

1.6.1-2ubuntu0.12
upstream

released

1.8.10,1.9.3
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

released

1.7.9-1ubuntu5.2

Показывать по

EPSS

Процентиль: 77%
0.01086
Низкий

2.6 Low

CVSS2

3.1 Low

CVSS3

Связанные уязвимости

redhat
больше 9 лет назад

The password hasher in contrib/auth/hashers.py in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to enumerate users via a timing attack involving login requests.

CVSS3: 3.1
nvd
больше 9 лет назад

The password hasher in contrib/auth/hashers.py in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to enumerate users via a timing attack involving login requests.

CVSS3: 3.1
debian
больше 9 лет назад

The password hasher in contrib/auth/hashers.py in Django before 1.8.10 ...

CVSS3: 3.1
github
около 3 лет назад

Django User Enumeration Vulnerability

suse-cvrf
больше 7 лет назад

Security update for python-Django

EPSS

Процентиль: 77%
0.01086
Низкий

2.6 Low

CVSS2

3.1 Low

CVSS3