Lucene search
PRIOn knowledge basePRION:CVE-2021-33880HistoryJun 06, 2021 - 3:15 p.m.
Authentication flaw
2021-06-0615:15:00
PRIOn knowledge base
www.prio-n.com
3
The aaugustin websockets library before 9.1 for Python has an Observable Timing Discrepancy on servers when HTTP Basic Authentication is enabled with basic_auth_protocol_factory(credentials=…). An attacker may be able to guess a password via a timing attack.
Related
osv
osv
Observable Timing Discrepancy in aaugustin websockets library
2021-06-11 17:43:14
PYSEC-2021-95
2021-06-06 15:15:00
CVE-2021-33880
2021-06-06 15:15:07
ubuntucve
ubuntucve
CVE-2021-33880
2021-06-06 00:00:00
veracode
veracode
Information Disclosure
2021-06-07 06:35:51
github
github
Observable Timing Discrepancy in aaugustin websockets library
2021-06-11 17:43:14
cvelist
cvelist
CVE-2021-33880
2021-06-06 14:05:45
nvd
nvd
CVE-2021-33880
2021-06-06 15:15:07
debiancve
debiancve
CVE-2021-33880
2021-06-06 15:15:07
archlinux
archlinux
[ASA-202106-26] python-websockets: private key recovery
2021-06-09 00:00:00
cve
cve
CVE-2021-33880
2021-06-06 15:15:07
oracle
oracle
Oracle Critical Patch Update Advisory - January 2022
2022-01-18 00:00:00
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00