Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4578


Vulnerability Score 2.1 2.1
CVE Id CVE-2012-4578
Last Modified 01 Mar 2013 11:45:50
Published 21 Aug 2012 03:55:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE



The geli encryption provider 7 before r239184 on FreeBSD 10 uses a weak Master Key, which makes it easier for local users to defeat a cryptographic protection mechanism via a brute-force attack.

Vulnerable Systems


  • Pawel Jakub Dawidek Geli 4

  • Pawel Jakub Dawidek Geli 7


MLIST - [freebsd-security] 20120820 [HEADSUP] geli(4) weak master key generation on -CURRENT

XF - freebsd-geli-weak-security(78057)

Last Updated: 27 May 2016 10:53:36