02 Sep 2016
CVE-2016-5429 Vulnerability
jose-php before 2.2.1 does not use constant-time operations for HMAC comparison, which makes it easier for remote attackers to obtain sensitive information via a timing attack, related to JWE.php and JWS.php. (CVSS:4.3) (Last Update:2016-09-06)
Vulnerability Details : jose-php before 2.2.1 does not use constant-time operations for HMAC comparison, which makes it easier for remote attackers to obtain sensitive information via a timing attack, related to JWE.php and JWS.php. Publish Date : 2016-09-03 Last Update Date : 2016-09-06 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2016-5429
- Number Of Affected Versions By Product
- References For CVE-2016-5429 | ||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2016-5429There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |