Vulnerabilities > Weak Password Requirements
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-05 | CVE-2020-8632 | Weak Password Requirements vulnerability in multiple products In cloud-init through 19.4, rand_user_password in cloudinit/config/cc_set_passwords.py has a small default pwlen value, which makes it easier for attackers to guess passwords. | 5.5 |
| 2020-01-23 | CVE-2020-7940 | Weak Password Requirements vulnerability in Plone Missing password strength checks on some forms in Plone 4.3 through 5.2.0 allow users to set weak passwords, leading to easier cracking. | 7.5 |
| 2019-12-23 | CVE-2019-7488 | Weak Password Requirements vulnerability in Sonicwall Email Security Appliance 10.0.2/7.4.5/7.5 Weak default password cause vulnerability in SonicWall Email Security appliance which leads to attacker gain access to appliance database. | 9.8 |
| 2019-12-20 | CVE-2019-19747 | Weak Password Requirements vulnerability in Neuvector 3.1 NeuVector 3.1 when configured to allow authentication via Active Directory, does not enforce non-empty passwords which allows an attacker with access to the Neuvector portal to authenticate as any valid LDAP user by providing a valid username and an empty password (provided that the active directory server has not been configured to reject empty passwords). | 9.8 |
| 2019-12-18 | CVE-2019-19690 | Weak Password Requirements vulnerability in Trendmicro Mobile Security 10.3.1/9.7/9.8 Trend Micro Mobile Security for Android (Consumer) versions 10.3.1 and below on Android 8.0+ has an issue in which an attacker could bypass the product's App Password Protection feature. | 9.8 |
| 2019-12-16 | CVE-2019-18828 | Weak Password Requirements vulnerability in Barco products Barco ClickShare Button R9861500D01 devices before 1.9.0 have Insufficiently Protected Credentials. | 6.8 |
| 2019-11-06 | CVE-2019-14833 | Weak Password Requirements vulnerability in multiple products A flaw was found in Samba, all versions starting samba 4.5.0 before samba 4.9.15, samba 4.10.10, samba 4.11.2, in the way it handles a user password change or a new password for a samba user. | 5.4 |
| 2019-10-29 | CVE-2011-4931 | Weak Password Requirements vulnerability in multiple products gpw generates shorter passwords than required | 7.5 |
| 2019-09-20 | CVE-2019-4565 | Weak Password Requirements vulnerability in IBM Security KEY Lifecycle Manager IBM Security Key Lifecycle Manager 3.0 and 3.0.1 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. | 7.5 |
| 2019-09-18 | CVE-2019-3758 | Weak Password Requirements vulnerability in RSA Archer RSA Archer, versions prior to 6.6 P2 (6.6.0.2), contain an improper authentication vulnerability. | 9.8 |