exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 2

CVE-2020-1926

почти 5 лет назад

Apache Hive cookie signature verification used a non constant time comparison which is known to be vulnerable to timing attacks. This could allow recovery of another users cookie signature. The issue was addressed in Apache Hive 2.3.8

CVSS3: 5.9

EPSS: Низкий

GHSA-54g4-5cf6-hjp3

почти 4 года назад

Apache Hive Information Exposure and Observable Timing Discrepancy

CVSS3: 5.9

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2020-1926 Apache Hive cookie signature verification used a non constant time comparison which is known to be vulnerable to timing attacks. This could allow recovery of another users cookie signature. The issue was addressed in Apache Hive 2.3.8	CVSS3: 5.9	0% Низкий	почти 5 лет назад
	GHSA-54g4-5cf6-hjp3 Apache Hive Information Exposure and Observable Timing Discrepancy	CVSS3: 5.9	0% Низкий	почти 4 года назад

Уязвимостей на страницу