CVE-2021-4076

Опубликовано: 02 мар. 2022

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

A flaw exists in tang, a network-based cryptographic binding server, which could result in leak of private keys.

Ссылки

https://bugzilla.redhat.com/show_bug.cgi?id=2029814
Issue Tracking
Third Party Advisory
https://github.com/latchset/tang/commit/e82459fda10f0630c3414ed2afbc6320bb9ea7c9
Patch
Third Party Advisory
https://github.com/latchset/tang/pull/81
Issue Tracking
Patch
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2029814
Issue Tracking
Third Party Advisory
https://github.com/latchset/tang/commit/e82459fda10f0630c3414ed2afbc6320bb9ea7c9
Patch
Third Party Advisory
https://github.com/latchset/tang/pull/81
Issue Tracking
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:tang_project:tang:*:*:*:*:*:*:*:*

Версия от 8 (включая) до 11 (исключая)

EPSS

Процентиль: 64%

0.00477

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

NVD-CWE-noinfo

Связанные уязвимости

CVE-2021-4076

CVSS3: 7.5

ubuntu

почти 4 года назад

A flaw exists in tang, a network-based cryptographic binding server, which could result in leak of private keys.

CVE-2021-4076

CVSS3: 7.5

redhat

около 4 лет назад

A flaw exists in tang, a network-based cryptographic binding server, which could result in leak of private keys.

CVE-2021-4076

CVSS3: 7.5

debian

почти 4 года назад

A flaw exists in tang, a network-based cryptographic binding server, w ...

GHSA-83f4-c2vq-g2p3

CVSS3: 7.5

github

почти 4 года назад

A flaw exists in tang, a network-based cryptographic binding server, which could result in leak of private keys.

EPSS

Процентиль: 64%

0.00477

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

NVD-CWE-noinfo