Description

The system credentials low complexity considerably reduces the amount of time required to guess them. This allows an attacker to have quicker success when executing a brute force attack.

Impact

Obtain functional credentials for resources or services.

Recommendation

Enforce strong password policy. A password security policy must contain the following attributes: - Configure a minimum and maximum length. - Do not use word based passwords. - Avoid usernames in the passwords. - Do not reuse passwords.

Threat

Anonymous attacker from the Internet.

Expected Remediation Time

⏱️ 15 minutes.

Requirements

Fixes