CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7940

Missing password strength checks on some forms in Plone 4.3 through 5.2.0 allow users to set weak passwords, leading to easier cracking.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.9%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2020-7940

Plone » Plone » Version: 4.3.0

cpe:2.3:a:plone:plone:4.3.0
Plone » Plone » Version: 4.3.1

cpe:2.3:a:plone:plone:4.3.1
Plone » Plone » Version: 4.3.10

cpe:2.3:a:plone:plone:4.3.10
Plone » Plone » Version: 4.3.11

cpe:2.3:a:plone:plone:4.3.11
Plone » Plone » Version: 4.3.12

cpe:2.3:a:plone:plone:4.3.12
Plone » Plone » Version: 4.3.13

cpe:2.3:a:plone:plone:4.3.13
Plone » Plone » Version: 4.3.14

cpe:2.3:a:plone:plone:4.3.14
Plone » Plone » Version: 4.3.15

cpe:2.3:a:plone:plone:4.3.15
Plone » Plone » Version: 4.3.16

cpe:2.3:a:plone:plone:4.3.16
Plone » Plone » Version: 4.3.17

cpe:2.3:a:plone:plone:4.3.17
Plone » Plone » Version: 4.3.18

cpe:2.3:a:plone:plone:4.3.18
Plone » Plone » Version: 4.3.19

cpe:2.3:a:plone:plone:4.3.19
Plone » Plone » Version: 4.3.2

cpe:2.3:a:plone:plone:4.3.2
Plone » Plone » Version: 4.3.20

cpe:2.3:a:plone:plone:4.3.20
Plone » Plone » Version: 4.3.3

cpe:2.3:a:plone:plone:4.3.3
Plone » Plone » Version: 4.3.4

cpe:2.3:a:plone:plone:4.3.4
Plone » Plone » Version: 4.3.5

cpe:2.3:a:plone:plone:4.3.5
Plone » Plone » Version: 4.3.6

cpe:2.3:a:plone:plone:4.3.6
Plone » Plone » Version: 4.3.7

cpe:2.3:a:plone:plone:4.3.7
Plone » Plone » Version: 4.3.8

cpe:2.3:a:plone:plone:4.3.8
Plone » Plone » Version: 4.3.9

cpe:2.3:a:plone:plone:4.3.9
Plone » Plone » Version: 5.0

cpe:2.3:a:plone:plone:5.0
Plone » Plone » Version: 5.0.1

cpe:2.3:a:plone:plone:5.0.1
Plone » Plone » Version: 5.0.10

cpe:2.3:a:plone:plone:5.0.10
Plone » Plone » Version: 5.0.2

cpe:2.3:a:plone:plone:5.0.2
Plone » Plone » Version: 5.0.3

cpe:2.3:a:plone:plone:5.0.3
Plone » Plone » Version: 5.0.4

cpe:2.3:a:plone:plone:5.0.4
Plone » Plone » Version: 5.0.5

cpe:2.3:a:plone:plone:5.0.5
Plone » Plone » Version: 5.0.6

cpe:2.3:a:plone:plone:5.0.6
Plone » Plone » Version: 5.0.7

cpe:2.3:a:plone:plone:5.0.7
Plone » Plone » Version: 5.0.8

cpe:2.3:a:plone:plone:5.0.8
Plone » Plone » Version: 5.0.9

cpe:2.3:a:plone:plone:5.0.9
Plone » Plone » Version: 5.1

cpe:2.3:a:plone:plone:5.1
Plone » Plone » Version: 5.1.1

cpe:2.3:a:plone:plone:5.1.1
Plone » Plone » Version: 5.1.2

cpe:2.3:a:plone:plone:5.1.2
Plone » Plone » Version: 5.1.3

cpe:2.3:a:plone:plone:5.1.3
Plone » Plone » Version: 5.1.4

cpe:2.3:a:plone:plone:5.1.4
Plone » Plone » Version: 5.1.5

cpe:2.3:a:plone:plone:5.1.5
Plone » Plone » Version: 5.1.6

cpe:2.3:a:plone:plone:5.1.6
Plone » Plone » Version: 5.1.7

cpe:2.3:a:plone:plone:5.1.7
Plone » Plone » Version: 5.1a1

cpe:2.3:a:plone:plone:5.1a1
Plone » Plone » Version: 5.1a2

cpe:2.3:a:plone:plone:5.1a2
Plone » Plone » Version: 5.1b2

cpe:2.3:a:plone:plone:5.1b2
Plone » Plone » Version: 5.1b3

cpe:2.3:a:plone:plone:5.1b3
Plone » Plone » Version: 5.1b4

cpe:2.3:a:plone:plone:5.1b4
Plone » Plone » Version: 5.1rc1

cpe:2.3:a:plone:plone:5.1rc1
Plone » Plone » Version: 5.1rc2

cpe:2.3:a:plone:plone:5.1rc2
Plone » Plone » Version: 5.2

cpe:2.3:a:plone:plone:5.2
Plone » Plone » Version: 5.2.0

cpe:2.3:a:plone:plone:5.2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7940

Products

Pricing

Contact Us