CVE-2016-6340

EPSS 0.13%
Published 22.09.2016 15:59:03
Last modified 12.04.2025 10:46:40
Source secalert@redhat.com
Teams watchlist Login
Open Login

The kickstart file in Red Hat QuickStart Cloud Installer (QCI) forces use of MD5 passwords on deployed systems, which makes it easier for attackers to determine cleartext passwords via a brute-force attack.

Affected products Warnungen 0 Metrics 3 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Redhat ≫ Quickstart Cloud Installer Version-

Redhat ≫ Enterprise Linux Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.13%	0.324

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.4	2.5	5.9	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:P/I:N/A:N

http://www.securityfocus.com/bid/92655

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1370315

Vendor Advisory

VDB Entry

Issue Tracking

https://nvd.nist.gov/vuln/detail/CVE-2016-6340

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2016-6340

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2016-6340

EUVD