CVE-2016-20013

ADVISORY - nist

Summary

sha256crypt and sha512crypt through 0.6 allow attackers to cause a denial of service (CPU consumption) because the algorithm's runtime is proportional to the square of the length of the password.

EPSS Score⁠: 0.00192 (0.416)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-770⁠

Allocation of Resources Without Limits or Throttling

Impacted images

Advisories

NIST

CREATED

3 years ago

UPDATED

8 months ago

ADVISORY IDCVE-2016-20013⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-770⁠

CVSS SCORE

7.5high

Ubuntu

CREATED

3 years ago

UPDATED

1 month ago

ADVISORY IDCVE-2016-20013⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7.5low

intheWild

CREATED

4 months ago

UPDATED

4 months ago

ADVISORY IDCVE-2016-20013⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY