CVE-2017-7305

MEDIUM Year: 2017
CVSS v3 Score
4.6
Medium
CVSS v2 Score
2.1
Low
Weakness Type
CWE-521
View all →

Vulnerability Description

Riverbed RiOS through 9.6.0 does not require a bootloader password, which makes it easier for physically proximate attackers to defeat the secure-vault protection mechanism via a crafted boot. NOTE: the vendor believes that this does not meet the definition of a vulnerability. The product contains correct computational logic for a bootloader password; however, this password is optional to meet different customers' needs

Related Vulnerabilities

CVE-2022-35280

MEDIUM
CVSS:4.6(Medium)

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Fo...

CWE-5212022

CVE-2021-20418

MEDIUM
CVSS:4.7(Medium)

IBM Security Guardium 11.2 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 196279.

CWE-5212021

CVE-2020-27585

MEDIUM
CVSS:4.4(Medium)

Quick Heal Total Security before 19.0 allows attackers with local admin rights to modify sensitive anti virus settings via a brute-attack on the settings password.

CWE-5212020

CVE-2024-42173

MEDIUM
CVSS:4.8(Medium)

HCL MyXalytics is affected by an improper password policy implementation vulnerability. Weak passwords and lack of account lockout policies allow attackers to guess or brute-force passwords if the use...

CWE-5212024

CVE-2022-1236

MEDIUM
CVSS:4.3(Medium)

Weak Password Requirements in GitHub repository weseek/growi prior to v5.0.0.

CWE-5212022

CVE-2023-50305

MEDIUM
CVSS:5.1(Medium)

IBM Engineering Requirements Management DOORS 9.7.2.7 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ...

CWE-5212023