Vulnerabilities > CVE-2024-25190 - Information Exposure Through Discrepancy vulnerability in Glitchedpolygons L8W8Jwt 2.2.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
l8w8jwt 2.2.1 uses memcmp (which is not constant time) to verify authentication, which makes it easier to bypass authentication via a timing side channel.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |