Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:3983
HistoryApr 27, 2017 - 6:38 a.m.

Blockwise Chosen-boundary Attacks

2017-04-2706:38:37
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
23

EPSS

0.006

Percentile

78.8%

github.com/openshift/origin is vulnerable to blockwise chosen-boundary attacks (aka) the “BEAST” attack. It encrypts data by using CBC mode with chained initialization vectors which allows attackers to obtain plaintext HTTP headers through blockwise chosen-boundary attacks on HTTPS sessions. This artifact is related to CVE-2011-3389.