1 results (0.003 seconds)
CVSS: 5.9EPSS: 0%CPEs: 3EXPL: 0
CVSS: 5.9EPSS: 0%CPEs: 3EXPL: 0CVE-2021-4294 – OpenShift OSIN CheckClientSecret timing discrepancy
https://notcve.org/view.php?id=CVE-2021-4294
28 Dec 2022 — A vulnerability was found in OpenShift OSIN. It has been classified as problematic. This affects the function ClientSecretMatches/CheckClientSecret. The manipulation of the argument secret leads to observable timing discrepancy. The name of the patch is 8612686d6dda34ae9ef6b5a974e4b7accb4fea29. • https://github.com/openshift/osin/commit/8612686d6dda34ae9ef6b5a974e4b7accb4fea29 • CWE-203: Observable Discrepancy CWE-208: Observable Timing Discrepancy •