In cloud-init through 19.4, rand_user_password in cloudinit/config/cc_set_passwords.py has a small default pwlen value, which makes it easier for attackers to guess passwords.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-02-05T13:40:05
Updated: 2024-08-04T10:03:46.284Z
Reserved: 2020-02-05T00:00:00
Link: CVE-2020-8632
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-02-05T14:15:11.653
Modified: 2022-01-01T20:03:52.477
Link: CVE-2020-8632
Redhat