CVE-2012-3458

Опубликовано: 15 сент. 2012

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.3

Описание

Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote attackers to obtain portions of sensitive session data via unspecified vectors.

Релиз	Статус	Примечание
devel	not-affected
esm-apps/xenial	not-affected	1.6.4
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [1.6.3-1.1]]
hardy	ignored	end of life
lucid	ignored	end of life
natty	released	1.5.4-4+squeeze1build0.11.04.1
oneiric	released	1.5.4-4+squeeze1build0.11.10.1
precise	released	1.5.4-4+squeeze1build0.12.04.1
quantal	ignored	end of life
raring	ignored	end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 69%

0.00603

Низкий

4.3 Medium

CVSS2

Связанные уязвимости

CVE-2012-3458

redhat

больше 13 лет назад

Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote attackers to obtain portions of sensitive session data via unspecified vectors.

CVE-2012-3458

nvd

больше 13 лет назад

Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote attackers to obtain portions of sensitive session data via unspecified vectors.

CVE-2012-3458

debian

больше 13 лет назад

Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES ...

GHSA-39vm-p9mr-4r27

CVSS3: 5.3

github

больше 3 лет назад

Beaker Sensitive Information Disclosure vulnerability

EPSS

Процентиль: 69%

0.00603

Низкий

4.3 Medium

CVSS2

CVE-2012-3458

Описание

Пакет beaker

Ссылки на источники

Связанные уязвимости