Lucene search

PRIOn knowledge basePRION:CVE-2017-7252

HistoryNov 03, 2023 - 1:15 a.m.

Default credentials

2023-11-0301:15:00

PRIOn knowledge base

www.prio-n.com

default credentials

botan

password hashing

security flaw

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.3%

JSON

bcrypt password hashing in Botan before 2.1.0 does not correctly handle passwords with a length between 57 and 72 characters, which makes it easier for attackers to determine the cleartext password.

CPENameOperatorVersion
botange1.11.0
botanlt2.1.0

CPE	Name	Operator	Version
	botan	ge	1.11.0
	botan	lt	2.1.0

References

botan.randombit.net/security.html

bugzilla.suse.com/show_bug.cgi?id=1034591