{"url":"http://public2.vulnerablecode.io/api/packages/104956?format=json","purl":"pkg:deb/debian/system-tools-backends@2.10.2-5?distro=trixie","type":"deb","namespace":"debian","name":"system-tools-backends","version":"2.10.2-5","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"2.6.0-6.1","latest_non_vulnerable_version":"2.10.2-5","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/201306?format=json","vulnerability_id":"VCID-7nvr-3kkz-7yf9","summary":"system-tools-backends before 2.6.0-1ubuntu1.1 in Ubuntu 8.10, as used by \"Users and Groups\" in GNOME System Tools, hashes account passwords with 3DES and consequently limits effective password lengths to eight characters, which makes it easier for context-dependent attackers to successfully conduct brute-force password attacks.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-6792","reference_id":"","reference_type":"","scores":[{"value":"0.00375","scoring_system":"epss","scoring_elements":"0.59537","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-6792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6792"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=527952","reference_id":"527952","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=527952"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/104955?format=json","purl":"pkg:deb/debian/system-tools-backends@2.6.0-6.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/system-tools-backends@2.6.0-6.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/104954?format=json","purl":"pkg:deb/debian/system-tools-backends@2.10.2-3.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/system-tools-backends@2.10.2-3.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/104956?format=json","purl":"pkg:deb/debian/system-tools-backends@2.10.2-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/system-tools-backends@2.10.2-5%3Fdistro=trixie"}],"aliases":["CVE-2008-6792"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7nvr-3kkz-7yf9"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/system-tools-backends@2.10.2-5%3Fdistro=trixie"}