Azure Access BLU-IC2 and BLU-IC4 Insufficient Password Policy Vulnerability

Vulnerability

A vulnerability exists in Azure Access BLU-IC2 and BLU-IC4 products, all versions through 1.19.5, due to an inadequate password policy. This weakness could potentially lead to security issues by allowing the use of weak passwords.

Impact

The insufficient password policy could enable users to create weak passwords, increasing the risk of unauthorized access or account compromise.

Added: Oct 31, 2025, 4:22 PM

Updated: Oct 31, 2025, 4:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Azure Access BLU-IC2 and BLU-IC4 Insufficient Password Policy Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating