Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
jsrsasign v11.1.0 was discovered to contain weak encryption. NOTE: this issue has been disputed by a third party who believes that CVE IDs can be assigned for key lengths in specific applications that use a library, and should not be assigned to the default key lengths in a library. This dispute is subject to review under CNA rules 4.1.4, 4.1.14, and other rules; the dispute tagging is not meant to recommend an outcome for this CVE Record.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
Vulnerability Type
不充分的加密强度
Vulnerability Title
jsrsasign 安全漏洞
Vulnerability Description
jsrsasign是Kenji Urushima个人开发者的一个签名验证库。 jsrsasign v11.1.0版本存在安全漏洞,该漏洞源于弱加密问题。
CVSS Information
N/A
Vulnerability Type
N/A