CVE-2016-7030
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2016-7030
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-7030.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2016-7030
- Related
- Published
- 2017-08-28T15:29:01Z
- Modified
- 2024-09-18T02:31:13.036838Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
FreeIPA uses a default password policy that locks an account after 5 unsuccessful authentication attempts, which allows remote attackers to cause a denial of service by locking out the account in which system services run on.
- References
-
- http://rhn.redhat.com/errata/RHSA-2017-0001.html
- http://www.securityfocus.com/bid/94934
- http://www.openwall.com/lists/oss-security/2017/01/02/5
- https://bugzilla.redhat.com/show_bug.cgi?id=1370493
- https://pagure.io/freeipa?id=6f1d927467e7907fd1991f88388d96c67c9bff61
- https://security-tracker.debian.org/tracker/CVE-2016-7030
Affected packages
Debian:12 / freeipa
Package
- Name
- freeipa
- Purl
- pkg:deb/debian/freeipa?arch=source
Git / github.com/freeipa/freeipa
Affected ranges
- Type
- GIT
- Repo
- https://github.com/freeipa/freeipa
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
Affected versions
Other
alpha-1-9-0
alpha_1-4-2-0
alpha_1-4-4-0
alpha_2-1-9-0
alpha_3-1-9-0
alpha_4-1-9-0
alpha_5-1-9-0
alpha_5-1-9-0-1
beta_1-2-0-0
beta_1-3-0-0
beta_1-3-2-0
beta_1-3-3-0
beta_2-3-0-0
beta_2-3-3-0
milestone_2
milestone_3
milestone_4
milestone_4_1
milestone_6
rc_1-2-0-0
rc_2-2-0-0
rc_3-2-0-0
release-1-0-0
release-1-1-0
release-2-0-0
release-2-1-0
release-3-1-0
release-3-2-0
release-3-2-0-pre1
release-3-3-0
release-4-0-0
release-4-2-0
release-4-4-0
release-4-4-1
release-4-6-0