One Article Review
| Source |  Bleeping Computer |
|---|---|
| Identifiant | 2108675 |
| Date de publication | 2020-12-17 15:26:26 (vue: 2020-12-17 21:06:03) |
| Titre | Bouncy Castle fixes cryptography API authentication bypass flaw |
| Texte | A severe authentication bypass vulnerability has been reported in Bouncy Castle, a popular open-source cryptography library. When exploited, the vulnerability (CVE-2020-28052) can allow an attacker to gain access to user and administrator accounts due to a cryptographic weakness in the manner passwords are checked. [...] |
| Notes | |
| Envoyé | Oui |
| Condensat | 2020 28052 access accounts administrator allow api are attacker authentication a popular been bouncy bypass can castle checked cryptographic cryptography cve due exploited fixes flaw gain has in bouncy library manner open passwords reported severe source user vulnerability weakness when |
| Tags | Vulnerability |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ressemble à 1 autre(s) article(s):
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
|
2020-12-17 15:26:26 | (Déjà vu) Bouncy Castle fixes crypto API authentication bypass flaw (lien direct) | A severe authentication bypass vulnerability has been reported in Bouncy Castle, a popular open-source cryptography library. When exploited, the vulnerability (CVE-2020-28052) can allow an attacker to gain access to user and administrator accounts due to a cryptographic weakness in the manner passwords are checked. [...] | Vulnerability |