Vulnerabilities > Weak Password Requirements
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-09 | CVE-2021-28914 | Weak Password Requirements vulnerability in Bab-Technologie Eibport Firmware 3.8.2/3.8.3 BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 allow the user to set a weak password because the strength is shown in configuration tool, but finally not enforced. | 6.5 |
| 2021-09-09 | CVE-2021-28912 | Weak Password Requirements vulnerability in Bab-Technologie Eibport Firmware 3.8.2/3.8.3 BAB TECHNOLOGIE GmbH eibPort V3. | 7.2 |
| 2021-08-11 | CVE-2021-20418 | Weak Password Requirements vulnerability in IBM Security Guardium 11.2 IBM Security Guardium 11.2 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. | 9.8 |
| 2021-08-04 | CVE-2021-1522 | Weak Password Requirements vulnerability in Cisco Connected Mobile Experiences A vulnerability in the change password API of Cisco Connected Mobile Experiences (CMX) could allow an authenticated, remote attacker to alter their own password to a value that does not comply with the strong authentication requirements that are configured on an affected device. | 4.3 |
| 2021-07-09 | CVE-2021-32753 | Weak Password Requirements vulnerability in Edgexfoundry Edgex Foundry EdgeX Foundry is an open source project for building a common open framework for internet-of-things edge computing. | 6.5 |
| 2021-06-24 | CVE-2021-25923 | Weak Password Requirements vulnerability in Open-Emr Openemr In OpenEMR, versions 5.0.0 to 6.0.0.1 are vulnerable to weak password requirements as it does not enforce a maximum password length limit. | 8.1 |
| 2021-04-26 | CVE-2021-25839 | Weak Password Requirements vulnerability in Minthcm 3.0.8 A weak password requirement vulnerability exists in the Create New User function of MintHCM RELEASE 3.0.8, which could lead an attacker to easier password brute-forcing. | 9.8 |
| 2021-04-26 | CVE-2021-26797 | Weak Password Requirements vulnerability in Hametech Hame SD1 Wi-Fi Firmware 20140224154640 An access control vulnerability in Hame SD1 Wi-Fi firmware <=V.20140224154640 allows an attacker to get system administrator through an open Telnet service. | 9.8 |
| 2021-03-03 | CVE-2020-8296 | Weak Password Requirements vulnerability in multiple products Nextcloud Server prior to 20.0.0 stores passwords in a recoverable format even when external storage is not configured. | 6.7 |
| 2021-03-02 | CVE-2021-25309 | Weak Password Requirements vulnerability in Gigaset Dx600A Firmware V41.00175 The telnet administrator service running on port 650 on Gigaset DX600A v41.00-175 devices does not implement any lockout or throttling functionality. | 9.8 |