0.002 Low
EPSS
Percentile
55.1%
aescrypt uses a vulnerable encryption method. The method is vulnerable because it does not randomize the CBC IV when encrypting and decrypting data. This allows attackers to easily defeat the cryptographic mechanism by guessing the CBC IV.
CBC IV
github.com/Gurpartap/aescrypt/issues/4