2.1

CVE-2011-2190

The generate_admin_password function in Cherokee before 1.2.99 uses time and PID values for seeding of a random number generator, which makes it easier for local users to determine admin passwords via a brute-force attack.

Data is provided by the National Vulnerability Database (NVD)
Cherokee-projectCherokee Version <= 1.2.98
Cherokee-projectCherokee Version0.3.0
Cherokee-projectCherokee Version0.4.0
Cherokee-projectCherokee Version0.4.1
Cherokee-projectCherokee Version0.4.2
Cherokee-projectCherokee Version0.4.3
Cherokee-projectCherokee Version0.4.4
Cherokee-projectCherokee Version0.4.5
Cherokee-projectCherokee Version0.4.6
Cherokee-projectCherokee Version0.4.7
Cherokee-projectCherokee Version0.4.8
Cherokee-projectCherokee Version0.4.9
Cherokee-projectCherokee Version0.4.10
Cherokee-projectCherokee Version0.4.11
Cherokee-projectCherokee Version0.4.12
Cherokee-projectCherokee Version0.4.13
Cherokee-projectCherokee Version0.4.14
Cherokee-projectCherokee Version0.4.15
Cherokee-projectCherokee Version0.4.16
Cherokee-projectCherokee Version0.4.17
Cherokee-projectCherokee Version0.4.18
Cherokee-projectCherokee Version0.4.19
Cherokee-projectCherokee Version0.4.20
Cherokee-projectCherokee Version0.4.21
Cherokee-projectCherokee Version0.4.22
Cherokee-projectCherokee Version0.4.23
Cherokee-projectCherokee Version0.4.24
Cherokee-projectCherokee Version0.4.25
Cherokee-projectCherokee Version0.4.26
Cherokee-projectCherokee Version0.4.27
Cherokee-projectCherokee Version0.4.28
Cherokee-projectCherokee Version0.4.29
Cherokee-projectCherokee Version0.4.30
Cherokee-projectCherokee Version0.5.0
Cherokee-projectCherokee Version0.5.1
Cherokee-projectCherokee Version0.5.2
Cherokee-projectCherokee Version0.5.3
Cherokee-projectCherokee Version0.5.4
Cherokee-projectCherokee Version0.5.5
Cherokee-projectCherokee Version0.5.6
Cherokee-projectCherokee Version0.6.0
Cherokee-projectCherokee Version0.6.1
Cherokee-projectCherokee Version0.7.0
Cherokee-projectCherokee Version0.7.1
Cherokee-projectCherokee Version0.7.2
Cherokee-projectCherokee Version0.8.0
Cherokee-projectCherokee Version0.8.1
Cherokee-projectCherokee Version0.9.0
Cherokee-projectCherokee Version0.9.1
Cherokee-projectCherokee Version0.9.2
Cherokee-projectCherokee Version0.9.3
Cherokee-projectCherokee Version0.9.4
Cherokee-projectCherokee Version0.10.0
Cherokee-projectCherokee Version0.10.1
Cherokee-projectCherokee Version0.11.0
Cherokee-projectCherokee Version0.11.1
Cherokee-projectCherokee Version0.11.2
Cherokee-projectCherokee Version0.11.3
Cherokee-projectCherokee Version0.11.4
Cherokee-projectCherokee Version0.11.5
Cherokee-projectCherokee Version0.11.6
Cherokee-projectCherokee Version0.98.0
Cherokee-projectCherokee Version0.98.1
Cherokee-projectCherokee Version0.99.0
Cherokee-projectCherokee Version0.99.1
Cherokee-projectCherokee Version0.99.2
Cherokee-projectCherokee Version0.99.3
Cherokee-projectCherokee Version0.99.4
Cherokee-projectCherokee Version0.99.5
Cherokee-projectCherokee Version0.99.6
Cherokee-projectCherokee Version0.99.07
Cherokee-projectCherokee Version0.99.8
Cherokee-projectCherokee Version0.99.9
Cherokee-projectCherokee Version0.99.10
Cherokee-projectCherokee Version0.99.11
Cherokee-projectCherokee Version0.99.12
Cherokee-projectCherokee Version0.99.13
Cherokee-projectCherokee Version0.99.14
Cherokee-projectCherokee Version0.99.15
Cherokee-projectCherokee Version0.99.16
Cherokee-projectCherokee Version0.99.17
Cherokee-projectCherokee Version0.99.18
Cherokee-projectCherokee Version0.99.19
Cherokee-projectCherokee Version0.99.20
Cherokee-projectCherokee Version0.99.21
Cherokee-projectCherokee Version0.99.22
Cherokee-projectCherokee Version0.99.23
Cherokee-projectCherokee Version0.99.24
Cherokee-projectCherokee Version0.99.25
Cherokee-projectCherokee Version0.99.26
Cherokee-projectCherokee Version0.99.27
Cherokee-projectCherokee Version0.99.28
Cherokee-projectCherokee Version0.99.29
Cherokee-projectCherokee Version0.99.30
Cherokee-projectCherokee Version0.99.31
Cherokee-projectCherokee Version0.99.32
Cherokee-projectCherokee Version0.99.33
Cherokee-projectCherokee Version0.99.34
Cherokee-projectCherokee Version0.99.35
Cherokee-projectCherokee Version0.99.36
Cherokee-projectCherokee Version0.99.37
Cherokee-projectCherokee Version0.99.38
Cherokee-projectCherokee Version0.99.39
Cherokee-projectCherokee Version0.99.40
Cherokee-projectCherokee Version0.99.41
Cherokee-projectCherokee Version0.99.42
Cherokee-projectCherokee Version0.99.43
Cherokee-projectCherokee Version0.99.44
Cherokee-projectCherokee Version0.99.45
Cherokee-projectCherokee Version0.99.46
Cherokee-projectCherokee Version0.99.47
Cherokee-projectCherokee Version0.99.48
Cherokee-projectCherokee Version0.99.49
Cherokee-projectCherokee Version1.0.0
Cherokee-projectCherokee Version1.0.1
Cherokee-projectCherokee Version1.0.2
Cherokee-projectCherokee Version1.0.3
Cherokee-projectCherokee Version1.0.4
Cherokee-projectCherokee Version1.0.5
Cherokee-projectCherokee Version1.0.6
Cherokee-projectCherokee Version1.0.7
Cherokee-projectCherokee Version1.0.8
Cherokee-projectCherokee Version1.0.9
Cherokee-projectCherokee Version1.0.10
Cherokee-projectCherokee Version1.0.11
Cherokee-projectCherokee Version1.0.12
Cherokee-projectCherokee Version1.0.13
Cherokee-projectCherokee Version1.0.14
Cherokee-projectCherokee Version1.0.15
Cherokee-projectCherokee Version1.0.16
Cherokee-projectCherokee Version1.0.17
Cherokee-projectCherokee Version1.0.18
Cherokee-projectCherokee Version1.0.19
Cherokee-projectCherokee Version1.0.20
Cherokee-projectCherokee Version1.2.0
Cherokee-projectCherokee Version1.2.1
Cherokee-projectCherokee Version1.2.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.09% 0.26
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N