Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-916

CWE-916

Use of Password Hash With Insufficient Computational Effort

Parent: CWE-328 - Use of Weak Hash

The product generates a hash for a password, but it uses a scheme that does not provide a sufficient level of computational effort that would make password cracking attacks infeasible or expensive.

115 vulnerabilities with CWE-916

CVE-2020-14516 CRITICAL

Rockwell Automation FactoryTalk Services Platform <6.11.00 - Info D...

CVE-2020-28873 HIGH

Fluxbb 1.5.11 - Denial of Service via Long Password Input

CVE-2020-10538 MEDIUM

epikur < 20.1.1 - Insecure Password Storage via Unsalted MD5 Hashes

CVE-2020-6780 MEDIUM

Bosch FSM-2500/FSM-5000 <5.2 - Info Disclosure

CVE-2020-14389 HIGH

Keycloak <12.0.0 - Privilege Escalation

CVE-2020-27693 MEDIUM

Trend Micro IMSVA 9.1 - Info Disclosure

CVE-2020-14512 HIGH

GateManager <9.2c - Info Disclosure

CVE-2020-10040 MEDIUM

SICAM MMU < 2.05, SGU, T < 2.18 - Password Hash Weakness

CVE-2019-20466 HIGH

Sannce Smart HD Wifi Security Camera - Info Disclosure

CVE-2019-9080 HIGH

DomainMOD <4.14.0 - Info Disclosure

CVE-2019-20575 MEDIUM

Android - WPA3 Handshake Downgrade and Dictionary Attack

CVE-2019-19735 CRITICAL

MFScripts YetiShare <4.5.3 - Info Disclosure

CVE-2019-20138 HIGH

Nim HTTP Auth <2019-12-27 - Info Disclosure

CVE-2019-19766 HIGH

Bitwarden <1.32.0 - Info Disclosure

CVE-2019-17216 CRITICAL

V-Zug Combi-Steam MSLQ <Ethernet R07 & WLAN R05 - Info Disclosure

CVE-2019-12737 MEDIUM

JetBrains Ktor <1.2.0-rc - Info Disclosure

CVE-2019-6563 CRITICAL

Moxa IKS-G6824A Firmware < 4.5 and EDS-405A/408A/510A Firmware < 3.8 - Predictable Cookie Generation via MD5 Hash

CVE-2019-7649 HIGH

CMSWing 1.3.7 - Use of Password Hash With Insufficient Computational Effort

CVE-2019-3907 HIGH

Premisys Identicard <3.1.190 - Info Disclosure

CVE-2019-0030 HIGH

Juniper ATP <5.0.3 - Info Disclosure

CVE-2018-13811 MEDIUM

SIMATIC STEP 7 (TIA Portal) < V15.1 - Sensitive Information Exposure via Weak Password Hash

CVE-2018-15717 MEDIUM

Open Dental <18.4 - Info Disclosure

CVE-2018-15681 CRITICAL

BTITeam XBTIT <2.5.4 - Info Disclosure

CVE-2018-15680 CRITICAL

BTITeam XBTIT <2.5.4 - Info Disclosure

CVE-2018-10618 CRITICAL

Davolink DVW-3200N <1.00.06 - Info Disclosure

Previous Page 4 of 5 Next

Details

Vulnerabilities 115

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy