Количество 2
Количество 2
CVE-2013-7463
почти 9 лет назад
The aescrypt gem 1.0.0 for Ruby does not randomize the CBC IV for use with the AESCrypt.encrypt and AESCrypt.decrypt functions, which allows attackers to defeat cryptographic protection mechanisms via a chosen plaintext attack.
CVSS3: 7.5
EPSS: Низкий
GHSA-4c4w-3q45-hp9j
больше 8 лет назад
Aescrypt does not sufficiently use random values
CVSS3: 7.5
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2013-7463 The aescrypt gem 1.0.0 for Ruby does not randomize the CBC IV for use with the AESCrypt.encrypt and AESCrypt.decrypt functions, which allows attackers to defeat cryptographic protection mechanisms via a chosen plaintext attack. | CVSS3: 7.5 | 0% Низкий | почти 9 лет назад |
| GHSA-4c4w-3q45-hp9j Aescrypt does not sufficiently use random values | CVSS3: 7.5 | 0% Низкий | больше 8 лет назад |
Уязвимостей на страницу
20