exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 3

CVE-2018-9057

больше 7 лет назад

aws/resource_aws_iam_user_login_profile.go in the HashiCorp Terraform Amazon Web Services (AWS) provider through v1.12.0 has an inappropriate PRNG algorithm and seeding, which makes it easier for remote attackers to obtain access by leveraging an IAM account that was provisioned with a weak password.

CVSS3: 9.8

EPSS: Низкий

CVE-2018-9057

больше 3 лет назад

CVSS3: 9.8

EPSS: Низкий

GHSA-r48h-jr2j-9g78

больше 3 лет назад

HashiCorp Terraform Amazon Web Services (AWS) uses an insecure PRNG

CVSS3: 9.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2018-9057 aws/resource_aws_iam_user_login_profile.go in the HashiCorp Terraform Amazon Web Services (AWS) provider through v1.12.0 has an inappropriate PRNG algorithm and seeding, which makes it easier for remote attackers to obtain access by leveraging an IAM account that was provisioned with a weak password.	CVSS3: 9.8	0% Низкий	больше 7 лет назад
CVE-2018-9057	CVSS3: 9.8	0% Низкий	больше 3 лет назад
GHSA-r48h-jr2j-9g78 HashiCorp Terraform Amazon Web Services (AWS) uses an insecure PRNG	CVSS3: 9.8	0% Низкий	больше 3 лет назад

Уязвимостей на страницу