PT-2019-6887 · Cryptocat · Cryptocat
Security Curmudgeon
·
Publicado
2019-11-04
·
Atualizado
2019-11-05
·
CVE-2013-2257
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Cryptocat versions prior to 2.0.42
Description
The issue concerns a weakness in the generation of ECC private keys for group chats, which could potentially be exploited through brute force.
Recommendations
For versions prior to 2.0.42, update to version 2.0.42 or later to resolve the issue.
Correção
Improper Restriction of Excessive Authentication Attempts
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Cryptocat