NVD

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( Dot gov ) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Sort results by:

Search Results (Refine Search)

Search Parameters:

Results Type: Overview
Keyword (text search): cpe:2.3:a:jasypt_project:jasypt:1.9.1:*:*:*:*:*:*:*
CPE Name Search: true

There are 1 matching records.

Displaying matches 1 through 1.

Vuln ID	Summary	CVSS Severity
CVE-2014-9970	jasypt before 1.9.2 allows a timing attack against the password hash comparison. Published: May 21, 2017; 2:29:00 PM -0400	V3.0: 7.5 HIGH V2.0: 5.0 MEDIUM

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

Search Results (Refine Search)