Lucene search

CVE-2014-125055

🗓️ 07 Jan 2023 09:21:15Reported by [email protected]Type

Vulnerability in agnivade easy-scrypt VerifyPassphrase function, allowing observable timing discrepanc

Reporter	Title	Published	Views	Family All 8
Veracode	Timing Attacks	18 Jan 202305:28	–	veracode
Prion	Design/Logic Flaw	7 Jan 202309:15	–	prion
GitLab Advisory Database	Observable Timing Discrepancy	7 Jan 202300:00	–	gitlab
OSV	GO-2023-1294 easy-scrypt Observable Timing Discrepancy vulnerability in github.com/agnivade/easy-scrypt	20 Aug 202420:25	–	osv
OSV	easy-scrypt Observable Timing Discrepancy vulnerability	7 Jan 202309:30	–	osv
Cvelist	CVE-2014-125055 agnivade easy-scrypt scrypt.go VerifyPassphrase timing discrepancy	7 Jan 202308:59	–	cvelist
CVE	CVE-2014-125055	7 Jan 202309:15	–	cve
Github Security Blog	easy-scrypt Observable Timing Discrepancy vulnerability	7 Jan 202309:30	–	github

Nvd

Node

easy-script_project easy-scriptRange<1.0.0

Source	Link
vuldb	www.vuldb.com/
github	www.github.com/agnivade/easy-scrypt/releases/tag/v1.0.0
vuldb	www.vuldb.com/
github	www.github.com/agnivade/easy-scrypt/commit/477c10cf3b144ddf96526aa09f5fdea613f21812

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

07 Jan 2023 09:15Current

4.2Medium risk

Vulners AI Score4.2

CVSS21.4

CVSS35.3

EPSS0.00447

CWE-208