Parcimonie
1 CVEs
product
Monthly
parcimonie before 0.8.1, when using a large keyring, sleeps for the same amount of time between fetches, which allows attackers to correlate key fetches via unspecified vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.
Information Disclosure
Race Condition
Parcimonie
NVD
CVSS 2.0
7.5
EPSS
0.4%
EPSS 0%
CVSS 7.5
HIGH
PATCH
This Week
parcimonie before 0.8.1, when using a large keyring, sleeps for the same amount of time between fetches, which allows attackers to correlate key fetches via unspecified vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.
Information Disclosure
Race Condition
Parcimonie
NVD