Vulnerabilities > Weak Password Requirements
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-03 | CVE-2021-20470 | Weak Password Requirements vulnerability in multiple products IBM Cognos Analytics 11.1.7 and 11.2.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. | 5.0 |
| 2021-12-02 | CVE-2021-40333 | Weak Password Requirements vulnerability in Hitachienergy Fox615 Firmware and Xcm20 Firmware Weak Password Requirements vulnerability in Hitachi Energy FOX61x, XCM20 allows an attacker to gain unauthorized access to the Data Communication Network (DCN) routing configuration. | 5.5 |
| 2021-11-10 | CVE-2021-40520 | Weak Password Requirements vulnerability in Airangel products Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials. | 5.0 |
| 2021-10-19 | CVE-2021-38462 | Weak Password Requirements vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870 InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 does not enforce an efficient password policy. | 7.5 |
| 2021-10-13 | CVE-2021-35498 | Weak Password Requirements vulnerability in Tibco products The TIBCO EBX Web Server component of TIBCO Software Inc.'s TIBCO EBX, TIBCO EBX, TIBCO EBX, and TIBCO Product and Service Catalog powered by TIBCO EBX contains a vulnerability that under certain specific conditions allows an attacker to enter a password other than the legitimate password and it will be accepted as valid. | 9.8 |
| 2021-09-30 | CVE-2021-41296 | Weak Password Requirements vulnerability in Ecoa products ECOA BAS controller uses weak set of default administrative credentials that can be easily guessed in remote password attacks and gain full control of the system. | 5.0 |
| 2021-09-09 | CVE-2021-28914 | Weak Password Requirements vulnerability in Bab-Technologie Eibport Firmware 3.8.2/3.8.3 BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 allow the user to set a weak password because the strength is shown in configuration tool, but finally not enforced. | 4.3 |
| 2021-09-09 | CVE-2021-28912 | Weak Password Requirements vulnerability in Bab-Technologie Eibport Firmware 3.8.2/3.8.3 BAB TECHNOLOGIE GmbH eibPort V3. | 9.0 |
| 2021-08-04 | CVE-2021-1522 | Weak Password Requirements vulnerability in Cisco Connected Mobile Experiences A vulnerability in the change password API of Cisco Connected Mobile Experiences (CMX) could allow an authenticated, remote attacker to alter their own password to a value that does not comply with the strong authentication requirements that are configured on an affected device. | 4.3 |
| 2021-07-09 | CVE-2021-32753 | Weak Password Requirements vulnerability in Edgexfoundry Edgex Foundry EdgeX Foundry is an open source project for building a common open framework for internet-of-things edge computing. | 5.8 |