Vulnerabilities > Jasypt Project

DATE CVE VULNERABILITY TITLE RISK
2017-05-21 CVE-2014-9970 Information Exposure vulnerability in Jasypt Project Jasypt
jasypt before 1.9.2 allows a timing attack against the password hash comparison.
network
low complexity
jasypt-project CWE-200
7.5