CWE:
 

Tytuł
Data
Autor
High
Infoblox 6.8.4.x Weak MySQL Password
10.07.2014
Nate Kettlewell


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2022-04-05
Medium
CVE-2022-1236

Vendor: Weseek
Software: Growi
 

 
Weak Password Requirements in GitHub repository weseek/growi prior to v5.0.0.

 
2022-02-18
Medium
CVE-2021-38935

Vendor: IBM
Software: Maximo asset...
 

 
IBM Maximo Asset Management 7.6.1.2 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 210892.

 
2022-01-05
Low
CVE-2022-22110

Vendor: Daybydaycrm
Software: Daybyday crm
 

 

 
2021-12-13
Medium
CVE-2021-39064

Updating...
 

 
IBM Spectrum Copy Data Management 2.2.13 and earlier has weak authentication and password rules and incorrectly handles default credentials for the Spectrum Copy Data Management Admin console. IBM X-Force ID: 214957.

 
2021-12-09
Low
CVE-2021-41696

Vendor: Globaldatingsoftware
Software: Premiumdatin...
 

 
An authentication bypass (account takeover) vulnerability exists in Premiumdatingscript 4.2.7.7 due to a weak password reset mechanism in requests\user.php.

 
2021-12-06
Medium
CVE-2021-43036

Vendor: Kaseya
Software: Unitrends backup
 

 
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The password for the PostgreSQL wguest account is weak.

 
High
CVE-2021-43471

Updating...
 

 
In Canon LBP223 printers, the System Manager Mode login does not require an account password or PIN. An attacker can remotely shut down the device after entering the background, creating a denial of service vulnerability.

 
2021-12-03
Medium
CVE-2021-20470

Vendor: IBM
Software: Cognos analytics
 

 
IBM Cognos Analytics 11.1.7 and 11.2.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 196339.

 
2021-12-02
Medium
CVE-2021-40333

Updating...
 

 
Weak Password Requirements vulnerability in Hitachi Energy FOX61x, XCM20 allows an attacker to gain unauthorized access to the Data Communication Network (DCN) routing configuration. This issue affects: Hitachi Energy FOX61x versions prior to R15A. Hitachi Energy XCM20 versions prior to R15A.

 
2021-10-30
Medium
CVE-2021-36808

Vendor: Sophos
Software: Sophos secur...
 

 
A local attacker could bypass the app password using a race condition in Sophos Secure Workspace for Android before version 9.7.3115.

 

 


Copyright 2022, cxsecurity.com

 

Back to Top