4 matches found
CVE-2024-21530
Versions of the package cocoon before 0.4.0 are vulnerable to Reusing a Nonce, Key Pair in Encryption when the encrypt, wrap, and dump functions are sequentially called. An attacker can generate the same ciphertext by creating a new encrypted message with the same cocoon object. Note: The issue...
CVE-2024-21530
creationtimestamp| type| source ---|---|--- 2024-10-02 07:59:53+00:00| seen| https://t.me/cvedetector/6802...
CVE-2024-21530
Versions of the package cocoon before 0.4.0 are vulnerable to Reusing a Nonce, Key Pair in Encryption when the encrypt, wrap, and dump functions are sequentially called. An attacker can generate the same ciphertext by creating a new encrypted message with the same cocoon object. Note: The issue...
reef (>=0.0.46 <=0.0.82) potentially affected by CVE-2024-21530 via cocoon (>=0.2.5 <=0.3.3)
cocoon CARGO version =0.2.5, =0.0.46, =0.0.82 Source cves: CVE-2024-21530 Source advisory: OSV:GHSA-6878-6WC2-PF5H...