Mindrot: >> Jbcrypt >> 0.2 Security Vulnerabilities
Integer overflow in the crypt_raw method in the key-stretching implementation in jBCrypt before 0.4 makes it easier for remote attackers to determine cleartext values of password hashes via a brute-force attack against hashes associated with the maximum exponent.
CVSS Score
5.0
EPSS Score
0.025
Published
2015-02-28