Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:52 p.m.15 views

CVE-2020-8929

A mis-handling of invalid unicode characters in the Java implementation of Tink versions prior to 1.5 allows an attacker to change the ID part of a ciphertext, which result in the creation of a second ciphertext that can decrypt to the same plaintext. This can be a problem with encrypting...

5.3CVSS6.6AI score0.0047EPSS
Exploits0References1
OSV
OSV
added 2020/10/19 1:15 p.m.32 views

CVE-2020-8929

A mis-handling of invalid unicode characters in the Java implementation of Tink versions prior to 1.5 allows an attacker to change the ID part of a ciphertext, which result in the creation of a second ciphertext that can decrypt to the same plaintext. This can be a problem with encrypting...

5.3CVSS5.2AI score
Exploits0References2
CVE
CVE
added 2020/10/19 12:15 p.m.96 views

CVE-2020-8929

CVE-2020-8929 concerns the Java implementation of Google Tink prior to 1.5, where mis-handling invalid Unicode characters in ciphertexts allows an attacker to change the ID portion of a ciphertext. This can create a second ciphertext that decrypts to the same plaintext, impacting ciphertext integ...

5.3CVSS5AI score0.0047EPSS
Exploits0References2Affected Software1
vulnersOsv
vulnersOsv
added 2020/10/16 12:51 a.m.5 views

ai.catboost:catboost-spark_4.0_2.13 (=1.2.10), ai.catboost:catboost-spark_4.1_2.13 (=1.2.10) +770 more potentially affected by CVE-2020-8929 via com.google.crypto.tink:tink (>=1.0.0 <=1.4.0)

com.google.crypto.tink:tink MAVEN version =1.0.0, =1.1.0, =1.1.0, =1.3.0-alpha07, =1.3.0-alpha07, =2.4.0, =2.4.0, =2.3.1, =0.1.0, =0.1.3-20210127.1838-76ab4fc, =0.1.0, =0.1.3-20200811-2e41939 and more Source cves: CVE-2020-8929 Source advisory: OSV:GHSA-G5VF-V6WF-7W2R...

5.3CVSS6AI score0.0047EPSS
Exploits0
Rows per page
Query Builder