Количество 2
Количество 2
CVE-2022-31157
LTI 1.3 Tool Library is a library used for building IMS-certified LTI 1.3 tool providers in PHP. Prior to version 5.0, the function used to generate random nonces was not sufficiently cryptographically complex. Users should upgrade to version 5.0 to receive a patch. There are currently no known workarounds.
GHSA-768m-5w34-2xf5
LTI 1.3 Tool Library's function used to generate random nonces not sufficiently cryptographically complex before v5.0
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-31157 LTI 1.3 Tool Library is a library used for building IMS-certified LTI 1.3 tool providers in PHP. Prior to version 5.0, the function used to generate random nonces was not sufficiently cryptographically complex. Users should upgrade to version 5.0 to receive a patch. There are currently no known workarounds. | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
| GHSA-768m-5w34-2xf5 LTI 1.3 Tool Library's function used to generate random nonces not sufficiently cryptographically complex before v5.0 | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу