OpenCVE

Weak Password Requirements in GitHub repository froxlor/froxlor prior to 2.0.10.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Froxlor	Froxlor

Configuration 1 [-]

cpe:2.3:a:froxlor:froxlor:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://github.com/froxlor/froxlor/commit/2a84e9c1207fd3d792b7fb198fd0c66fe1a66a7a
https://huntr.dev/bounties/a4f86d6f-0d5d-428d-a4b3-551b20a21ce6

History

No history.

MITRE

Status: PUBLISHED

Assigner: @huntrdev

Published: 2023-01-29T00:00:00

Updated: 2024-08-02T05:17:50.092Z

Reserved: 2023-01-29T00:00:00

Link: CVE-2023-0564

Vulnrichment

No data.

NVD

Status : Modified

Published: 2023-01-29T01:15:08.773

Modified: 2023-12-18T11:15:07.873

Link: CVE-2023-0564

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2023-0564", "assignerOrgId": "c09c270a-b464-47c1-9133-acb35b22c19a", "assignerShortName": "@huntrdev", "dateUpdated": "2024-08-02T05:17:50.092Z", "dateReserved": "2023-01-29T00:00:00", "datePublished": "2023-01-29T00:00:00"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "froxlor/froxlor", "vendor": "froxlor", "versions": [{"lessThan": "2.0.10", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Ahmed Hassan (ahmedvienna)"}, {"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Josef Hassan (josefjku)"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>Weak Password Requirements in GitHub repository froxlor/froxlor prior to 2.0.10.</p>"}], "value": "Weak Password Requirements in GitHub repository froxlor/froxlor prior to 2.0.10.\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-521", "description": "CWE-521 Weak Password Requirements", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "c09c270a-b464-47c1-9133-acb35b22c19a", "shortName": "@huntr_ai", "dateUpdated": "2023-12-18T10:09:35.132Z"}, "references": [{"url": "https://huntr.dev/bounties/a4f86d6f-0d5d-428d-a4b3-551b20a21ce6"}, {"url": "https://github.com/froxlor/froxlor/commit/2a84e9c1207fd3d792b7fb198fd0c66fe1a66a7a"}], "source": {"advisory": "a4f86d6f-0d5d-428d-a4b3-551b20a21ce6", "discovery": "EXTERNAL"}, "title": "Weak Password Requirements in froxlor/froxlor", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T05:17:50.092Z"}, "title": "CVE Program Container", "references": [{"url": "https://huntr.dev/bounties/a4f86d6f-0d5d-428d-a4b3-551b20a21ce6", "tags": ["x_transferred"]}, {"url": "https://github.com/froxlor/froxlor/commit/2a84e9c1207fd3d792b7fb198fd0c66fe1a66a7a", "tags": ["x_transferred"]}]}]}}