Lucene search
Ubuntu.comUB:CVE-2019-12422HistoryNov 18, 2019 - 12:00 a.m.
CVE-2019-12422
2019-11-1800:00:00
ubuntu.com
ubuntu.com
6
0.002 Low
EPSS
Percentile
56.6%
Apache Shiro before 1.4.2, when using the default “remember me”
configuration, cookies could be susceptible to a padding attack.
References
launchpad.net/bugs/cve/CVE-2019-12422
lists.apache.org/thread.html/c9db14cfebfb8e74205884ed2bf2e2b30790ce24b7dde9191c82572c@%3Cdev.shiro.apache.org%3E
nvd.nist.gov/vuln/detail/CVE-2019-12422
security-tracker.debian.org/tracker/CVE-2019-12422
www.cve.org/CVERecord?id=CVE-2019-12422
www.openwall.com/lists/oss-security/2019/11/18/1
Related
prion
prion
Default configuration
2019-11-18 23:15:00
redhatcve
redhatcve
CVE-2019-12422
2019-11-20 20:07:26
osv
osv
Improper input validation in Apache Shiro
2020-02-04 22:36:36
CVE-2019-12422
2019-11-18 23:15:11
symantec
symantec
Apache Shiro CVE-2019-12422 Information Disclosure Vulnerability
2019-11-18 00:00:00
nessus
nessus
Apache Shiro < 1.4.2 Padding Attack
2022-06-01 00:00:00
cvelist
cvelist
CVE-2019-12422
2019-11-18 22:04:21
veracode
veracode
Padding Oracle Attack
2019-11-19 06:49:41
github
github
Improper input validation in Apache Shiro
2020-02-04 22:36:36
debiancve
debiancve
CVE-2019-12422
2019-11-18 23:15:00
cve
cve
CVE-2019-12422
2019-11-18 23:15:00
ibm
ibm
redhat
redhat
(RHSA-2020:0983) Important: Red Hat Fuse 7.6.0 security update
2020-03-26 15:40:22