Michael Bienia

**Name of the Vulnerable Software and Affected Versions** Python Keyring version 0.9.1 **Description** The issue arises from the insecure initialization of the cipher when encrypting passwords for `CryptedFileKeyring` files. This makes it easier for local users to obtain passwords via a brute-force attack. **Recommendations** For Python Keyring version 0.9.1, consider updating to a newer version that securely initializes the cipher for encrypting passwords. At the moment, there is no information about a newer version that contains a fix for this vulnerability.