CVE-2012-2743

Опубликовано: 27 июн. 2012

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Revelation 0.4.13-2 and earlier does not iterate through SHA hashing algorithms for AES encryption, which makes it easier for context-dependent attackers to guess passwords via a brute force attack.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:mikel_olasagasti:revelation:*:*:*:*:*:*:*:*

Версия до 0.4.13-2 (включая)

cpe:2.3:a:mikel_olasagasti:revelation:0.1.0:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.1.1:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.1.2:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.2.0:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.2.1:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.3.0:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.3.1:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.3.2:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.3.3:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.3.4:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.4.0:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.4.1:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.4.2:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.4.3:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.4.4:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.4.5:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.4.6:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.4.7:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.4.8:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.4.9:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.4.10:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.4.11:*:*:*:*:*:*:*

cpe:2.3:a:mikel_olasagasti:revelation:0.4.12:*:*:*:*:*:*:*

EPSS

Процентиль: 61%

0.00416

Низкий

5 Medium

CVSS2

Дефекты

CWE-255

Связанные уязвимости

CVE-2012-2743

ubuntu

больше 13 лет назад

Revelation 0.4.13-2 and earlier does not iterate through SHA hashing algorithms for AES encryption, which makes it easier for context-dependent attackers to guess passwords via a brute force attack.

CVE-2012-2743

debian

больше 13 лет назад

Revelation 0.4.13-2 and earlier does not iterate through SHA hashing a ...

GHSA-gfcf-47fv-3q9j

github

больше 3 лет назад

Revelation 0.4.13-2 and earlier does not iterate through SHA hashing algorithms for AES encryption, which makes it easier for context-dependent attackers to guess passwords via a brute force attack.

EPSS

Процентиль: 61%

0.00416

Низкий

5 Medium

CVSS2

Дефекты

CWE-255