Количество 4
Количество 4
CVE-2022-2582
The AWS S3 Crypto SDK sends an unencrypted hash of the plaintext alongside the ciphertext as a metadata field. This hash can be used to brute force the plaintext, if the hash is readable to the attacker. AWS now blocks this metadata field, but older SDK versions still send it.
CVE-2022-2582
The AWS S3 Crypto SDK sends an unencrypted hash of the plaintext alongside the ciphertext as a metadata field. This hash can be used to brute force the plaintext, if the hash is readable to the attacker. AWS now blocks this metadata field, but older SDK versions still send it.
CVE-2022-2582
The AWS S3 Crypto SDK sends an unencrypted hash of the plaintext along ...
GHSA-6jvc-q2x7-pchv
AWS S3 Crypto SDK sends an unencrypted hash of the plaintext alongside the ciphertext as a metadata field
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-2582 The AWS S3 Crypto SDK sends an unencrypted hash of the plaintext alongside the ciphertext as a metadata field. This hash can be used to brute force the plaintext, if the hash is readable to the attacker. AWS now blocks this metadata field, but older SDK versions still send it. | CVSS3: 4.3 | 0% Низкий | около 3 лет назад |
 | CVE-2022-2582 The AWS S3 Crypto SDK sends an unencrypted hash of the plaintext alongside the ciphertext as a metadata field. This hash can be used to brute force the plaintext, if the hash is readable to the attacker. AWS now blocks this metadata field, but older SDK versions still send it. | CVSS3: 4.3 | 0% Низкий | около 3 лет назад |
| CVE-2022-2582 The AWS S3 Crypto SDK sends an unencrypted hash of the plaintext along ... | CVSS3: 4.3 | 0% Низкий | около 3 лет назад |
| GHSA-6jvc-q2x7-pchv AWS S3 Crypto SDK sends an unencrypted hash of the plaintext alongside the ciphertext as a metadata field | CVSS3: 4.3 | 0% Низкий | около 3 лет назад |
Уязвимостей на страницу