Vulnerabilities > Cryptography IO > Cryptography > 1.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-03-27 | CVE-2016-9243 | Improper Input Validation vulnerability in multiple products HKDF in cryptography before 1.5.2 returns an empty byte-string if used with a length less than algorithm.digest_size. | 7.5 |