Nixpkgs security tracker
Dismissed
Permalink
CVE-2025-55252
3.1 LOW
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): High (H)
- Privileges Required (PR): High (H)
- User Interaction (UI): Required (R)
- Scope (S): Unchanged (U)
- Confidentiality (C): Low (L)
- Integrity (I): Low (L)
- Availability (A): None (N)
- Modified Attack Vector (MAV): Network (N)
- Modified Attack Complexity (MAC): High (H)
- Modified Privileges Required (MPR): High (H)
- Modified User Interaction (MUI): Required (R)
- Modified Confidentiality (MC): Low (L)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): Low (L)
- Modified Availability (MA): None (N)
by @mweinelt Activity log
- Created suggestion
-
@mweinelt
ignored
10 packages
- python312Packages.aionut
- python313Packages.aionut
- python312Packages.aiontfy
- python313Packages.aiontfy
- python312Packages.aionotion
- python313Packages.aionotion
- python312Packages.aionanoleaf
- python313Packages.aionanoleaf
- python313Packages.electrum-aionostr
- python312Packages.electrum-aionostr
- @mweinelt dismissed
HCL AION is affected by a Weak Password Policy vulnerability
HCL AION version 2 is affected by a Weak Password Policy vulnerability. This can allow the use of easily guessable passwords, potentially resulting in unauthorized access
Affected products
AION
- ==2
Ignored packages (10)
pkgs.python312Packages.aionut
Asyncio Network UPS Tools
pkgs.python313Packages.aionut
Asyncio Network UPS Tools
pkgs.python312Packages.aiontfy
Async ntfy client library
pkgs.python313Packages.aiontfy
Async ntfy client library
pkgs.python312Packages.aionotion
Python library for Notion Home Monitoring
pkgs.python313Packages.aionotion
Python library for Notion Home Monitoring
pkgs.python312Packages.aionanoleaf
Python wrapper for the Nanoleaf API
pkgs.python313Packages.aionanoleaf
Python wrapper for the Nanoleaf API
pkgs.python312Packages.electrum-aionostr
Asyncio nostr client
pkgs.python313Packages.electrum-aionostr
Asyncio nostr client