CVE-2010-3299 - CERT CVE

  1. CVE-2010-3299

ID CVE-2010-3299
Sažetak The encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to padding oracle attacks.
Reference
CVSS
Base: 4.3
Impact: 2.9
Exploitability:8.6
Pristup
VektorSloženostAutentikacija
NETWORK MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
PARTIAL NONE NONE
CVSS vektor AV:N/AC:M/Au:N/C:P/I:N/A:N
Zadnje važnije ažuriranje 15-11-2019 - 02:32
Objavljeno 12-11-2019 - 21:15