Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:4231
HistoryMay 16, 2017 - 1:26 a.m.

Insecure Encryption

2017-05-1601:26:30
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
2

0.002 Low

EPSS

Percentile

55.1%

aescrypt uses a vulnerable encryption method. The method is vulnerable because it does not randomize the CBC IV when encrypting and decrypting data. This allows attackers to easily defeat the cryptographic mechanism by guessing the CBC IV.

CPENameOperatorVersion
aescrypteq1.0.0

0.002 Low

EPSS

Percentile

55.1%

Related for VERACODE:4231