Skip to main content

Http Authentication Library

1 CVEs product

Monthly

CVE-2019-20138 HIGH PATCH This Week

The HTTP Authentication library before 2019-12-27 for Nim has weak password hashing because the default algorithm for libsodium's crypto_pwhash_str is not used. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Http Authentication Library
NVD GitHub
CVSS 3.1
7.5
EPSS
0.8%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

The HTTP Authentication library before 2019-12-27 for Nim has weak password hashing because the default algorithm for libsodium's crypto_pwhash_str is not used. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Http Authentication Library
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy