What the vulnerability does
01Description
AMI Megarac Weak password hashes for Redfish & API
CVSS base score
5.3/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Key dates
02Disclosure timeline
January 31, 2023
CVE published
March 27, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-2349 IROAD Dash Cam FX2 Password Hash passwd weak password hash
CVE-2025-24340
CVE-2025-3937 Use of Password Hash with Insufficient Computational Effort
CVE-2025-41692 Weak/Predictable root Password
CVE-2022-47557 Use of Password Hash With Insufficient Computational Effort in Ormazabal products
