H1-197253 — Vulnetix

H1-197253 PUBLISHED CVSS 5.900000095367432 MEDIUM

formassembly.com is vulnerable to padding-oracle attacks.

Risk Scores

CVSS 3.1

5.900000095367432

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploit Intelligence

Docker container implementing tests for CVE-2016-2107 - LuckyNegative20 (github-poc)
Simple test for the May 2016 OpenSSL padding oracle (CVE-2016-2107) (github-poc)
formassembly.com is vulnerable to padding-oracle attacks. (hackerone)
formassembly.com is vulnerable to padding-oracle attacks. (hackerone)

Timeline

Mar 17, 2017 CVE Published
Mar 17, 2017 PoC Published

References

formassembly.com is vulnerable to padding-oracle attacks. advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›