Lucene search
HistoryMar 16, 2015 - 2:59 p.m.
CVE-2014-9687
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
8.1
Confidence
High
EPSS
0.003
Percentile
70.8%
eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords via a brute force attack.
Affected configurations
Node
ecryptfsecryptfs-utilsRange≤104
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ecryptfs | ecryptfs-utils | * | cpe:2.3:a:ecryptfs:ecryptfs-utils:*:*:*:*:*:*:*:* |
Related
ubuntucve
ubuntucve
CVE-2014-9687
2014-12-31 00:00:00
securityvulns
securityvulns
[USN-2524-1] eCryptfs vulnerability
2015-03-15 00:00:00
eCryptfs crypto vulnerabilities
2015-03-15 00:00:00
debiancve
debiancve
CVE-2014-9687
2015-03-16 14:59:00
openvas
openvas
Ubuntu: Security Advisory (USN-2524-1)
2015-03-11 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:0241-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:0290-1)
2021-06-09 00:00:00
prion
prion
Default credentials
2015-03-16 14:59:00
nessus
nessus
RHEL 6 : ecryptfs-utils (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 5 : ecryptfs-utils (Unpatched Vulnerability)
2024-06-03 00:00:00
Ubuntu 14.04 LTS : eCryptfs vulnerability (USN-2524-1)
2015-03-11 00:00:00
archlinux
archlinux
ecryptfs-utils: hard-coded passphrase salt
2015-03-17 00:00:00
cvelist
cvelist
CVE-2014-9687
2015-03-16 14:00:00
cve
cve
CVE-2014-9687
2015-03-16 14:59:00
ubuntu
ubuntu
eCryptfs vulnerability
2015-03-11 00:00:00
osv
osv
ecryptfs-utils-108-2.5 on GA media
2024-06-15 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
8.1
Confidence
High
EPSS
0.003
Percentile
70.8%
Related for NVD:CVE-2014-9687