Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:4 a.m.3 views

CVE-2014-125055

A vulnerability, which was classified as problematic, was found in agnivade easy-scrypt. Affected is the function VerifyPassphrase of the file scrypt.go. The manipulation leads to observable timing discrepancy. The complexity of an attack is rather high. The exploitability is told to be difficult...

5.3CVSS6.3AI score0.00704EPSS
Exploits0References1
NVD
NVD
added 2023/01/07 9:15 a.m.35 views

CVE-2014-125055

A vulnerability, which was classified as problematic, was found in agnivade easy-scrypt. Affected is the function VerifyPassphrase of the file scrypt.go. The manipulation leads to observable timing discrepancy. The complexity of an attack is rather high. The exploitability is told to be difficult...

5.3CVSS4.2AI score0.00704EPSS
Exploits0References4
Prion
Prion
added 2023/01/07 9:15 a.m.20 views

Design/Logic Flaw

A vulnerability, which was classified as problematic, was found in agnivade easy-scrypt. Affected is the function VerifyPassphrase of the file scrypt.go. The manipulation leads to observable timing discrepancy. The complexity of an attack is rather high. The exploitability is told to be difficult...

1.4CVSS7AI score0.00704EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/01/07 8:59 a.m.38 views

CVE-2014-125055 agnivade easy-scrypt scrypt.go VerifyPassphrase timing discrepancy

A vulnerability, which was classified as problematic, was found in agnivade easy-scrypt. Affected is the function VerifyPassphrase of the file scrypt.go. The manipulation leads to observable timing discrepancy. The complexity of an attack is rather high. The exploitability is told to be difficult...

2.6CVSS5.3AI score0.00704EPSS
Exploits0References4
CVE
CVE
added 2023/01/07 8:59 a.m.78 views

CVE-2014-125055

The CVE concerns the Go library agnivade/easy-scrypt. Affected is the VerifyPassphrase function in scrypt.go, where an observable timing discrepancy is introduced due to the underlying implementation flaw. Per multiple sources, upgrading to version 1.0.0 fixes the issue (patch: 477c10cf3b144ddf96...

5.3CVSS4.5AI score0.00704EPSS
Exploits0References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/01/07 12:0 a.m.20 views

Observable Timing Discrepancy

A vulnerability, which was classified as problematic, was found in agnivade easy-scrypt. Affected is the function VerifyPassphrase of the file scrypt.go. The manipulation leads to observable timing discrepancy. Upgrading to version 1.0.0 is able to address this issue. The name of the patch is...

5.3CVSS5.7AI score0.00704EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder