Lucene search
GoogleOSV:CVE-2020-1926HistoryMar 16, 2021 - 1:15 p.m.
CVE-2020-1926
2021-03-1613:15:11
Google
osv.dev
5
Apache Hive cookie signature verification used a non constant time comparison which is known to be vulnerable to timing attacks. This could allow recovery of another users cookie signature. The issue was addressed in Apache Hive 2.3.8
Related
github
github
Apache Hive Information Exposure and Observable Timing Discrepancy
2022-02-09 00:48:54
cve
cve
CVE-2020-1926
2021-03-16 13:15:11
osv
osv
Apache Hive Information Exposure and Observable Timing Discrepancy
2022-02-09 00:48:54
cvelist
cvelist
CVE-2020-1926 Timing attack in Cookie signature verification
2021-03-16 13:00:16
nvd
nvd
CVE-2020-1926
2021-03-16 13:15:11
veracode
veracode
Information Disclosure
2022-02-11 04:56:05
prion
prion
Code injection
2021-03-16 13:15:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00