Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-916 (使用具有不充分计算复杂性的口令哈希) — Vulnerability Class 44

44 vulnerabilities classified as CWE-916 (使用具有不充分计算复杂性的口令哈希). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-13532 Weak Password Hash in Core Privileged Access Manager (BoKS) — Core Privileged Access Manager (BoKS) 6.2 Medium2025-12-16
CVE-2025-41692 Weak/Predictable root Password — FL SWITCH 2005 6.8 Medium2025-12-09
CVE-2025-46413 BUFFALO WSR-1800AX4 Series 安全漏洞 — WSR-1800AX4 7.5 -2025-11-07
CVE-2025-7789 Xuxueli xxl-job Token Generation IndexController.java makeToken weak password hash — xxl-job 3.7 Low2025-07-18
CVE-2025-3937 Use of Password Hash with Insufficient Computational Effort — Niagara Framework 7.7 High2025-05-22
CVE-2025-24340 Bosch Rexroth ctrlX OS 安全漏洞 — ctrlX OS - Device Admin 6.5 Medium2025-04-30
CVE-2025-2349 IROAD Dash Cam FX2 Password Hash passwd weak password hash — Dash Cam FX2 3.1 Low2025-03-16
CVE-2025-2265 Santesoft Sante PACS Server HTTP.db SHA1 Hash Truncation — Sante PACS Server 7.8 High2025-03-13
CVE-2024-5743 Command Injection Vulnerability — Eve Play 9.8 Critical2025-01-13
CVE-2024-7701 Misuse of SHA256 to create an encryption key — percona-toolkit 8.4 -2024-12-15
CVE-2024-24553 Bludit uses SHA1 as Password Hashing Algorithm — Bludit 9.1AICriticalAI2024-06-24
CVE-2024-3183 Freeipa: user can obtain a hash of the passwords of all domain users and perform offline brute force 8.1 High2024-06-12
CVE-2024-21754 Fortinet FortiOS和Fortinet FortiProxy 安全漏洞 — FortiProxy 1.7 Low2024-06-11
CVE-2024-29886 Improved security for stored password hashes — serverpod 5.3 Medium2024-03-27
CVE-2024-2365 Musicshelf SHA-1 PinningTrustManager.java weak password hash — Musicshelf 1.6 Low2024-03-10
CVE-2024-25607 Liferay Portal和Liferay DXP 安全漏洞 — Portal 8.1 High2024-02-20
CVE-2023-5846 Use of Password Hash With Insufficient Computational Effort in Franklin Fueling System TS-550 — TS-550 8.3 High2023-11-02
CVE-2022-47557 Use of Password Hash With Insufficient Computational Effort in Ormazabal products — ekorCCP 6.1 Medium2023-09-19
CVE-2023-4986 Supcon InPlant SCADA Project.xml unknown vulnerability — InPlant SCADA 2.5 Low2023-09-15
CVE-2023-34433 PiiGAB M-Bus Use of Password Hash With Insufficient Computational Effort — M-Bus SoftwarePack 7.5 High2023-07-06
CVE-2023-27580 CodeIgniter Shield Password Shucking Vulnerability — shield 7.5 High2023-03-13
CVE-2022-26115 Fortinet FortiSandbox 安全漏洞 — FortiSandbox 5.4 Medium2023-02-16
CVE-2022-40258 Weak password hashes for Redfish & API — MegaRAC SPx-12 5.3 Medium2023-01-31
CVE-2020-12069 CODESYS V3 prone to Inadequate Password Hashing — CODESYS V3 containing the CmpUserMgr 7.8 High2022-12-26
CVE-2022-40295 Authenticated sensitive information disclosure in PHP Point of Sale version 19.0, by PHP Point of Sale, LLC. — PHP Point of Sale 4.9 -2022-10-31
CVE-2021-32997 Baker Hughes Bently Nevada 3500 - Use of Password Hash with Insufficient Computational Effort — 3500 System 1 6.x, Part No. 3060/00 8.2 High2022-05-25
CVE-2020-16231 All Bachmann M1 System Processor Modules - Use of Password Hash with Insufficient Computational Effort — M1 Hardware Controller MX207 7.2 High2022-05-19
CVE-2022-24041 多款Siemens产品安全漏洞 — Desigo DXR2 6.5 -2022-05-10
CVE-2022-1235 Weak secrethash can be brute-forced in livehelperchat/livehelperchat — livehelperchat/livehelperchat 5.3 -2022-04-05
CVE-2022-0022 PAN-OS: Use of a Weak Cryptographic Algorithm for Stored Password Hashes — PAN-OS 4.1 Medium2022-03-09

Vulnerabilities classified as CWE-916 (使用具有不充分计算复杂性的口令哈希) represent 44 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.