Lucene search
RedhatCVE-2012-3458HistorySep 15, 2012 - 5:55 p.m.
CVE-2012-3458
2012-09-1517:55:07
CWE-310
redhat
web.nvd.nist.gov
38
beaker
pycrypto
aes
ecb
vulnerability
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0.004
Percentile
72.7%
Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote attackers to obtain portions of sensitive session data via unspecified vectors.
Affected configurations
Node
pythonbeakerRange≤1.6.4
Related
openvas
openvas
Huawei EulerOS: Security Advisory for python-beaker (EulerOS-SA-2021-2608)
2021-10-26 00:00:00
Debian Security Advisory DSA 2541-1 (beaker)
2012-09-15 00:00:00
Debian: Security Advisory (DSA-2541-1)
2012-09-15 00:00:00
cvelist
cvelist
CVE-2012-3458
2012-09-15 17:00:00
nessus
nessus
Debian DSA-2541-1 : beaker - information disclosure
2012-09-10 00:00:00
EulerOS 2.0 SP3 : python-beaker (EulerOS-SA-2021-2608)
2021-10-25 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2541-1] beaker security update
2012-10-29 00:00:00
Beaker information leakage
2012-10-29 00:00:00
debian
debian
[SECURITY] [DSA 2541-1] beaker security update
2012-09-07 18:45:34
prion
prion
Code injection
2012-09-15 17:55:00
github
github
Beaker Sensitive Information Disclosure vulnerability
2022-05-17 05:22:19
nvd
nvd
CVE-2012-3458
2012-09-15 17:55:07
osv
osv
PYSEC-2012-1
2012-09-15 17:55:00
python36-Beaker-1.11.0-5.5 on GA media
2024-06-15 00:00:00
debiancve
debiancve
CVE-2012-3458
2012-09-15 17:55:07
ubuntucve
ubuntucve
CVE-2012-3458
2012-09-15 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0.004
Percentile
72.7%
Related for CVE-2012-3458