Search Results (Refine Search)
Search Parameters:
- Results Type: Overview
- Search Type: Search All
- CPE Vendor: cpe:/:jasypt_project
- CPE Product: cpe:/:jasypt_project:jasypt
- CPE Product Version: cpe:/:jasypt_project:jasypt:1.9.0
There are 1 matching records.
Displaying matches 1 through 1.
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2014-9970 |
jasypt before 1.9.2 allows a timing attack against the password hash comparison. Published: May 21, 2017; 2:29:00 PM -0400 |
V4.0:(not available) V3.0: 7.5 HIGH V2.0: 5.0 MEDIUM |