Lucene search

K
prionPRIOn knowledge basePRION:CVE-2013-7463
HistoryApr 19, 2017 - 5:59 p.m.

Design/Logic Flaw

2017-04-1917:59:00
PRIOn knowledge base
www.prio-n.com
3

7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

55.1%

The aescrypt gem 1.0.0 for Ruby does not randomize the CBC IV for use with the AESCrypt.encrypt and AESCrypt.decrypt functions, which allows attackers to defeat cryptographic protection mechanisms via a chosen plaintext attack.

CPENameOperatorVersion
aescryptle1.0.0

7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

55.1%

Related for PRION:CVE-2013-7463