CVE-2016-4980

Published: Nov 27, 2019Modified: Nov 21, 2024

2.5

Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

Exploitability: 1.0 / Impact: 1.4

Source: NVD

Description

A password generation weakness exists in xquest through 2016-06-13.

Affected (4)

Products: Ethz: Xquest · Fedoraproject: Fedora · Redhat: Enterprise Linux

1 product

1 product

1 product

Enterprise Linux

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Ethz Xquest	Up to 2016-06-13

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 23

Configuration C

2 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 6.0
Redhat Enterprise Linux	Version 7.0

Related CWEs

Use of Insufficiently Random Values

The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

References (8)

https://access.redhat.com/security/cve/cve-2016-4980

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1346016

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-4980

Source: secalert@redhat.com

Issue TrackingThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AVW2QJFNZUZYBN4M4YUE7S2NZBWWMGES/

Source: secalert@redhat.com

https://access.redhat.com/security/cve/cve-2016-4980

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1346016

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-4980

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AVW2QJFNZUZYBN4M4YUE7S2NZBWWMGES/

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.