EUVD-2023-0502

Malicious code in bioql PyPI...

CVE-2010-10006

A vulnerability, which was classified as problematic, was found in michaelliao jopenid. Affected is the function getAuthentication of the file JOpenId/src/org/expressme/openid/OpenIdManager.java. The manipulation leads to observable timing discrepancy. The complexity of an attack is rather high...

The vulnerability of the Michaelliao JOpenId library, related to the disclosure of information through mismatches, allows attackers to gain unauthorized access to protected information.

The vulnerability of the Michaelliao JOpenId library is related to the disclosure of information due to mismatches. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

Observable timing discrepancy in JOpenId

A vulnerability, which was classified as problematic, was found in michaelliao jopenid. Affected is the function getAuthentication of the file JOpenId/src/org/expressme/openid/OpenIdManager.java. The manipulation leads to observable timing discrepancy. Upgrading to version 1.08 is able to address...

GHSA-M4F8-P58G-J8MJ Observable timing discrepancy in JOpenId

A vulnerability, which was classified as problematic, was found in michaelliao jopenid. Affected is the function getAuthentication of the file JOpenId/src/org/expressme/openid/OpenIdManager.java. The manipulation leads to observable timing discrepancy. Upgrading to version 1.08 is able to address...

CVE-2010-10006

A vulnerability, which was classified as problematic, was found in michaelliao jopenid. Affected is the function getAuthentication of the file JOpenId/src/org/expressme/openid/OpenIdManager.java. The manipulation leads to observable timing discrepancy. The complexity of an attack is rather high...

Design/Logic Flaw

A vulnerability, which was classified as problematic, was found in michaelliao jopenid. Affected is the function getAuthentication of the file JOpenId/src/org/expressme/openid/OpenIdManager.java. The manipulation leads to observable timing discrepancy. The complexity of an attack is rather high...

jopenid 安全漏洞

jopenid is an open source component. A security vulnerability exists in jopenid. An attacker exploits the vulnerability to cause a noticeable time difference...

CVE-2010-10006 michaelliao jopenid OpenIdManager.java getAuthentication timing discrepancy

A vulnerability, which was classified as problematic, was found in michaelliao jopenid. Affected is the function getAuthentication of the file JOpenId/src/org/expressme/openid/OpenIdManager.java. The manipulation leads to observable timing discrepancy. The complexity of an attack is rather high...

CVE-2010-10006

CVE-2010-10006 affects michaelliao jopenid, specifically the timing discrepancy in OpenIdManager.java:getAuthentication. The issue arises from manipulation leading to observable timing differences. Exploitation complexity is described as high and exploitability as difficult. A fix is available in...

CVE-2010-10006 michaelliao jopenid OpenIdManager.java getAuthentication timing discrepancy

A vulnerability, which was classified as problematic, was found in michaelliao jopenid. Affected is the function getAuthentication of the file JOpenId/src/org/expressme/openid/OpenIdManager.java. The manipulation leads to observable timing discrepancy. The complexity of an attack is rather high...

PT-2010-1186 · Michaelliao · Openid

Name of the Vulnerable Software and Affected Versions: michaelliao jopenid versions prior to 1.08 Description: The issue is related to a timing discrepancy in the getAuthentication function of the OpenIdManager.java file. This discrepancy can be exploited by a remote attacker to gain unauthorized...