CWE:
 

Tytuł
Data
Autor
High
Infoblox 6.8.4.x Weak MySQL Password
10.07.2014
Nate Kettlewell


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2024-10-09
Waiting for details
CVE-2024-7293

Updating...
 

 
In Progress® Telerik® Report Server versions prior to 2024 Q3 (10.2.24.806), a password brute forcing attack is possible through weak password requirements.

 
2024-09-26
Waiting for details
CVE-2024-45374

Updating...
 

 
In the goTenna Pro ATAK Plugin application, the encryption keys are stored along with a static IV on the device. This allows for complete decryption of keys stored on the device. This allows an attacker to decrypt all encrypted broadcast communications based on broadcast keys stored on the device.

 
Waiting for details
CVE-2024-47121

Updating...
 

 
The goTenna Pro series uses a weak password for the QR broadcast message. If the QR broadcast message is captured over RF it is possible to decrypt it and use it to decrypt all future and past messages sent via encrypted broadcast.

 
2024-08-13
Waiting for details
CVE-2024-40697

Updating...
 

 
IBM Common Licensing 9.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 297895.

 
Waiting for details
CVE-2024-41683

Updating...
 

 
A vulnerability has been identified in Location Intelligence family (All versions < V4.4). Affected products do not properly enforce a strong user password policy. This could facilitate a brute force attack against legitimate user passwords.

 
2024-07-18
Waiting for details
CVE-2023-40539

Updating...
 

 
Philips Vue PACS does not require that users have strong passwords, which could make it easier for attackers to compromise user accounts.

 
2024-04-13
Waiting for details
CVE-2024-3735

Updating...
 

 
A vulnerability was found in Smart Office up to 20240405. It has been classified as problematic. Affected is an unknown function of the file Main.aspx. The manipulation of the argument New Password/Confirm Password with the input 1 leads to weak password requirements. It is possible to launch the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. VDB-260574 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

 
2024-03-01
Waiting for details
CVE-2023-50305

Updating...
 

 
IBM Engineering Requirements Management DOORS 9.7.2.7 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 273336.

 
2024-02-19
Waiting for details
CVE-2024-1345

Updating...
 

 
Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability allows an attacker to perform a brute force attack and easily discover the root password.

 
Waiting for details
CVE-2024-1346

Updating...
 

 
Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability allows an attacker to calculate the root password of the MySQL database used by LaborOfficeFree using two constants.

 

 


Copyright 2024, cxsecurity.com

 

Back to Top