| Max CVSS | 5.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-2743 | 5.0 |
Revelation 0.4.13-2 and earlier does not iterate through SHA hashing algorithms for AES encryption, which makes it easier for context-dependent attackers to guess passwords via a brute force attack.
|
29-08-2017 - 01:31 | 27-06-2012 - 22:55 | |
| CVE-2012-2742 | 5.0 |
Revelation 0.4.13-2 and earlier uses only the first 32 characters of a password followed by a sequence of zeros, which reduces the entropy and makes it easier for context-dependent attackers to crack passwords and obtain access to keys via a brute-fo
|
29-08-2017 - 01:31 | 27-06-2012 - 22:55 | |
| CVE-2012-3818 | 2.1 |
The fpm exporter in Revelation 0.4.13-2 and earlier encrypts the version number but not the password when exporting a file, which might allow local users to obtain sensitive information.
|
02-07-2012 - 12:36 | 29-06-2012 - 17:55 |