A flaw was found in Wildfly Elytron in versions prior to 1.10.14.Final, prior to 1.15.5.Final and prior to 1.16.1.Final where ScramServer may be susceptible to Timing Attack if enabled. The highest threat of this vulnerability is confidentiality.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1981407 | Issue Tracking Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2021-08-05T20:48:01
Updated: 2021-08-30T17:37:38
Reserved: 2021-07-12T00:00:00
Link: CVE-2021-3642
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-08-05T21:15:13.183
Modified: 2021-10-20T14:36:57.747
Link: CVE-2021-3642
JSON object: View
Redhat Information
No data.
CWE