Weak Password Requirements
CVE-2020-7492
Summary
A CWE-521: Weak Password Requirements vulnerability exists in the GP-Pro EX V1.00 to V4.09.100 which could cause the discovery of the password when the user is entering the password because it is not masqueraded.
- MEDIUM
- NETWORK
- NONE
- NONE
- PARTIAL
- NONE
CWE-521 - Weak Password Requirements
The product does not require that users should have strong passwords, which makes it easier for attackers to compromise user accounts.
References
Advisory Timeline
- Published
