Credentials Management Errors
CVE-2014-9248
Summary
Zenoss Core through 5 Beta 3 does not require complex passwords, which makes it easier for remote attackers to obtain access via a brute-force attack, aka ZEN-15406.
- LOW
- NETWORK
- NONE
- PARTIAL
- NONE
- NONE
CWE-255 - Credentials Management Errors
Weaknesses in this category are related to the management of credentials.
References
Advisory Timeline
- Published