Python keyring has insecure permissions on new databases allowing world-readable files to be created
Max CVSS
6.2
EPSS Score
0.12%
Published
2019-11-25
Updated
2019-12-04
Python keyring lib before 0.10 created keyring files with world-readable permissions.
Max CVSS
7.5
EPSS Score
0.78%
Published
2019-10-28
Updated
2019-10-31
Python Keyring 0.9.1 does not securely initialize the cipher when encrypting passwords for CryptedFileKeyring files, which makes it easier for local users to obtain passwords via a brute-force attack.
Max CVSS
2.1
EPSS Score
0.04%
Published
2012-11-30
Updated
2012-12-03
3 vulnerabilities found