Количество 4
Количество 4
CVE-2017-12872
The (1) Htpasswd authentication source in the authcrypt module and (2) SimpleSAML_Session class in SimpleSAMLphp 1.14.11 and earlier allow remote attackers to conduct timing side-channel attacks by leveraging use of the standard comparison operator to compare secret material against user input.
CVE-2017-12872
The (1) Htpasswd authentication source in the authcrypt module and (2) SimpleSAML_Session class in SimpleSAMLphp 1.14.11 and earlier allow remote attackers to conduct timing side-channel attacks by leveraging use of the standard comparison operator to compare secret material against user input.
CVE-2017-12872
The (1) Htpasswd authentication source in the authcrypt module and (2) ...
GHSA-v882-949x-6v28
SimpleSAMLphp allows timing side-channel attacks
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2017-12872 The (1) Htpasswd authentication source in the authcrypt module and (2) SimpleSAML_Session class in SimpleSAMLphp 1.14.11 and earlier allow remote attackers to conduct timing side-channel attacks by leveraging use of the standard comparison operator to compare secret material against user input. | CVSS3: 5.9 | 0% Низкий | больше 8 лет назад |
 | CVE-2017-12872 The (1) Htpasswd authentication source in the authcrypt module and (2) SimpleSAML_Session class in SimpleSAMLphp 1.14.11 and earlier allow remote attackers to conduct timing side-channel attacks by leveraging use of the standard comparison operator to compare secret material against user input. | CVSS3: 5.9 | 0% Низкий | больше 8 лет назад |
| CVE-2017-12872 The (1) Htpasswd authentication source in the authcrypt module and (2) ... | CVSS3: 5.9 | 0% Низкий | больше 8 лет назад |
| GHSA-v882-949x-6v28 SimpleSAMLphp allows timing side-channel attacks | CVSS3: 5.9 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу