Notrinos requires at least 8 characters of random characters in the password field. The generated password must be at least 8 characters in length. The generated password must contain a minimum of 1 upper case letter, 1 lower case letter, and 1 number. The password must not be a password that is the same as the username. The Notrinos repository on GitHub prior to 0.7 required that the requirement of a minimum of 8 characters of random characters in the password field. Prior to 0.7, Notrinos required at least 8 characters of random characters in the password field.

CVSS Scores and Verdict

Vendor: Notrinos
CVSS Score: Base Score 6.1
CVSS Vector: AV:L/AC:M/Au:N/C:C/I:N/A:N
Verdict: Critical
This issue is critical, because the vulnerability allows unauthenticated attackers to obtain sensitive information on vulnerable systems. An attacker could exploit this vulnerability to bypass authentication requirements and gain unauthorized access to affected systems.

CVE-2023-2928

Notrinos cannot generate passwords with a length of 11 characters. The generated password must be at least 8 characters in length. The generated password must contain a minimum of 1 upper case letter, 1 lower case letter, and 1 number.
The Notrinos repository on GitHub prior to 0.7 required that the requirement of a minimum of 8 characters of random characters in the password field. Prior to 0.7, Notrinos required at least 8 characters of random characters in the password field.

Notrinos recommends that passwords be at least 8 characters in length, contain a minimum of 1 upper case letter, 1 lower case letter, and 1 number, and not be the same as the username. It's important to avoid using the same password for different key accounts like email and social media accounts. Additionally, it's critical that you change your password from time-to-time so that hackers can't use algorithms to guess your password on a day-by-day basis.
Additionally, Notrinos recommends secure practices for password security such as randomly generating your passwords every 90 days or setting up a two step authentication process where users have to enter a code sent via text message or email or clicking on an image to verify their identity when logging into the account.

CVE-2022-2928

Notrinos prior to 0.7 required a minimum of 8 characters of random characters in the password field.
The Notrinos repository on GitHub prior to 0.7 required that the requirement of a minimum of 8 characters of random characters in the password field. Prior to 0.7, Notrinos required at least 8 characters of random characters in the password field.

Timeline

Published on: 08/22/2022 09:15:00 UTC
Last modified on: 08/23/2022 17:47:00 UTC

References