- CVE ID
- sonatype-2013-0070
- CWE
- N/A
- CVE Description
- ESAPI - Denial of Service (DoS)
- Published
- Dec 7, 2017
- CVSS Score & Severity
4.0Medium
- CVSS Vector
- CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
- EPSS Score
- 0%
- KEV Status
Not in KEV Catalog: No known exploits
- Vulnerable Methods
org/owasp/esapi/crypto/CipherText.validateMAC(Ljavax/crypto/SecretKey;)ZJVM
org/owasp/esapi/crypto/CipherText.validateMAC(Ljavax/crypto/SecretKey;)ZJVMVulnerable params: 0
- Source
- Sonatype