org.apache.directory.server:apacheds-kerberos-codec@2.0.0-M7 vulnerabilities
-
latest version
2.0.0.AM27
-
latest non vulnerable version
-
first published
13 years ago
-
latest version published
7 months ago
-
licenses detected
- [2.0.0-M1,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.apache.directory.server:apacheds-kerberos-codec package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
Affected versions of this package are vulnerable to Cryptographic Issues. A static IV is used in symmetric encryption with CBC mode. The IV of CBC mode is expected to be random. The static IV makes the resulting ciphertext much more predictable and susceptible to a dictionary attack. How to fix Cryptographic Issues? Upgrade |
[,2.0.0.AM27)
|