CVE-2024-0676

HIGH Year: 2024
CVSS v3 Score
7.1
High
Weakness Type
CWE-521
View all →

Vulnerability Description

Weak password requirement vulnerability in Lamassu Bitcoin ATM Douro machines, in its 7.1 version , which allows a local user to interact with the machine where the application is installed, retrieve stored hashes from the machine and crack long 4-character passwords using a dictionary attack.

Related Vulnerabilities

CVE-2021-40333

HIGH
CVSS:7.1(High)

Weak Password Requirements vulnerability in Hitachi Energy FOX61x, XCM20 allows an attacker to gain unauthorized access to the Data Communication Network (DCN) routing configuration. This issue affect...

CWE-5212021

CVE-2022-2098

HIGH
CVSS:7.1(High)

Weak Password Requirements in GitHub repository kromitgmbh/titra prior to 0.78.1.

CWE-5212022

CVE-2022-3179

HIGH
CVSS:7.1(High)

Weak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.4.2.

CWE-5212022

CVE-2025-25749

HIGH
CVSS:7.1(High)

An issue in HotelDruid version 3.0.7 and earlier allows users to set weak passwords due to the lack of enforcement of password strength policies.

CWE-5212025

CVE-2019-18988

HIGH
CVSS:7.0(High)

TeamViewer Desktop through 14.7.1965 allows a bypass of remote-login access control because the same key is used for different customers' installations. It used a shared AES key for all installations ...

CWE-5212019

CVE-2018-6312

HIGH
CVSS:7.2(High)

A privileged account with a weak default password on the Foxconn femtocell FEMTO AP-FC4064-T version AP_GT_B38_5.8.3lb15-W47 LTE Build 15 can be used to turn on the TELNET service via the web interfac...

CWE-5212018