Apache Syncope 1.1.x before 1.1.8 uses weak random values to generate passwords, which makes it easier for remote attackers to guess the password via a brute force attack.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2014-07-11 14:55
Updated : 2024-02-28 12:20
NVD link : CVE-2014-3503
Mitre link : CVE-2014-3503
CVE.ORG link : CVE-2014-3503
JSON object : View
Products Affected
apache
- syncope
CWE
CWE-310
Cryptographic Issues