CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-22893

OpenSlides 4.0.15 verifies passwords by comparing password hashes using a function with content-dependent runtime. This can allow attackers to obtain information about the password hash using a timing attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.5%

CVSS Severity

CVSS v3 Score 7.5

References

https://gist.github.com/mdickopp/10e4a4ba3d7ded8315a1613ee7f2541e

Products affected by CVE-2024-22893

Openslides » Openslides » Version: 4.0.15

cpe:2.3:a:openslides:openslides:4.0.15

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-22893

Products

Pricing

Contact Us