Описание
In cloud-init through 19.4, rand_user_password in cloudinit/config/cc_set_passwords.py has a small default pwlen value, which makes it easier for attackers to guess passwords.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 20.2-45-g5f7825e2-0ubuntu1~18.04.1 |
| devel | released | 21.4-25-g039c40f9-0ubuntu1~22.04.1 |
| eoan | ignored | end of life |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | released | 20.2-45-g5f7825e2-0ubuntu1~18.04.1 |
| esm-infra/focal | released | 20.1-10-g71af48df-0ubuntu5 |
| esm-infra/xenial | ignored | patched version in updates pocket |
| focal | released | 20.1-10-g71af48df-0ubuntu5 |
| groovy | released | 19.4-56-g06e324ff-0ubuntu1 |
| hirsute | released | 21.1-19-gbad84ad4-0ubuntu2 |
Показывать по
EPSS
2.1 Low
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
In cloud-init through 19.4, rand_user_password in cloudinit/config/cc_set_passwords.py has a small default pwlen value, which makes it easier for attackers to guess passwords.
In cloud-init through 19.4, rand_user_password in cloudinit/config/cc_set_passwords.py has a small default pwlen value, which makes it easier for attackers to guess passwords.
In cloud-init through 19.4 rand_user_password in cloudinit/config/cc_set_passwords.py has a small default pwlen value which makes it easier for attackers to guess passwords.
In cloud-init through 19.4, rand_user_password in cloudinit/config/cc_ ...
In cloud-init through 19.4, rand_user_password in cloudinit/config/cc_set_passwords.py has a small default pwlen value, which makes it easier for attackers to guess passwords.
EPSS
2.1 Low
CVSS2
5.5 Medium
CVSS3