Skip to main content

Tink Java

1 CVEs product

Monthly

CVE-2020-8929 LIB MEDIUM PATCH This Month

A mis-handling of invalid unicode characters in the Java implementation of Tink versions prior to 1.5 allows an attacker to change the ID part of a ciphertext, which result in the creation of a. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Java Information Disclosure Tink Java
NVD GitHub
CVSS 3.1
5.3
EPSS
0.5%
EPSS 0% CVSS 5.3
MEDIUM PATCH This Month

A mis-handling of invalid unicode characters in the Java implementation of Tink versions prior to 1.5 allows an attacker to change the ID part of a ciphertext, which result in the creation of a. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Java Information Disclosure Tink Java
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy