Zenoss Core through 5 Beta 3 uses a weak algorithm to... · CVE-2014-9251 · GitHub Advisory Database · GitHub

Zenoss Core through 5 Beta 3 uses a weak algorithm to...

Moderate severity Unreviewed Published May 17, 2022 to the GitHub Advisory Database • Updated Jan 28, 2023

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

Zenoss Core through 5 Beta 3 uses a weak algorithm to hash passwords, which makes it easier for context-dependent attackers to obtain cleartext values via a brute-force attack on hash values in the database, aka ZEN-15413.

References

Published by the National Vulnerability Database

Dec 15, 2014

Published to the GitHub Advisory Database May 17, 2022

Last updated Jan 28, 2023