Lucene search
GoogleOSV:PYSEC-2017-26HistoryNov 17, 2017 - 4:29 a.m.
PYSEC-2017-26
2017-11-1704:29:00
Google
osv.dev
10
EPSS
0.001
Percentile
35.0%
Python package pysaml2 version 4.4.0 and earlier reuses the initialization vector across encryptions in the IDP server, resulting in weak encryption of data.
Related
cve
cve
CVE-2017-1000246
2017-11-17 04:29:00
redhatcve
redhatcve
CVE-2017-1000246
2017-12-11 13:50:28
ubuntucve
ubuntucve
CVE-2017-1000246
2017-11-17 00:00:00
veracode
veracode
Initialization Vector Reuse
2017-05-30 08:23:10
nvd
nvd
CVE-2017-1000246
2017-11-17 04:29:00
debiancve
debiancve
CVE-2017-1000246
2017-11-17 04:29:00
osv
osv
CVE-2017-1000246
2017-11-17 04:29:00
Pysaml2 improperly initializes encryption vector
2018-07-16 16:50:30
cvelist
cvelist
CVE-2017-1000246
2017-11-17 04:00:00
github
github
Pysaml2 improperly initializes encryption vector
2018-07-16 16:50:30
prion
prion
Design/Logic Flaw
2017-11-17 04:29:00