The authenticated-encryption feature in the OWASP Enterprise Security API (ESAPI) for Java 2.x before 2.1.0 is vulnerable to bypassing cryptographic protection mechanisms
Reporter | Title | Published | Views | Family All 22 |
---|---|---|---|---|
NVD | CVE-2013-5679 | 30 Sep 201317:09 | – | nvd |
NVD | CVE-2013-5960 | 30 Sep 201317:09 | – | nvd |
Github Security Blog | Missing Cryptographic Step in OWASP Enterprise Security API for Java | 17 May 202203:56 | – | github |
Github Security Blog | Missing Cryptographic Step in OWASP Enterprise Security API for Java | 14 May 202201:37 | – | github |
OpenVAS | Mageia: Security Advisory (MGASA-2015-0064) | 28 Jan 202200:00 | – | openvas |
OpenVAS | Fedora Update for owasp-esapi-java FEDORA-2015-0259 | 15 Jan 201500:00 | – | openvas |
OpenVAS | Fedora Update for owasp-esapi-java FEDORA-2015-0322 | 15 Jan 201500:00 | – | openvas |
Cvelist | CVE-2013-5679 | 30 Sep 201310:00 | – | cvelist |
Cvelist | CVE-2013-5960 | 30 Sep 201310:00 | – | cvelist |
Prion | Default configuration | 30 Sep 201317:09 | – | prion |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo