CVE-2016-7036

python-jose before 1.3.2 allows attackers to have unspecified impact by leveraging failure to use a constant time comparison for HMAC keys.
Configurations

Configuration 1 (hide)

cpe:2.3:a:python-jose_project:python-jose:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-01-23 21:59

Updated : 2024-02-28 15:44


NVD link : CVE-2016-7036

Mitre link : CVE-2016-7036

CVE.ORG link : CVE-2016-7036


JSON object : View

Products Affected

python-jose_project

  • python-jose
CWE
CWE-361

7PK - Time and State