CVE Vulnerabilities

CVE-2012-2146

Published: Aug 26, 2012 | Modified: Aug 27, 2012
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Elixir 0.8.0 uses Blowfish in CFB mode without constructing a unique initialization vector (IV), which makes it easier for context-dependent users to obtain sensitive information and decrypt the database.

Affected Software

Name Vendor Start Version End Version
Elixir Ematia 0.8.0 0.8.0

References