Key Management Errors
CVE-2015-7503
Summary
Zend Framework before 2.4.9, 2.5.x before 2.5.3 and zend-framework/zend-crypt before 2.4.9, 2.5.x before 2.5.2 allows remote attackers to recover the RSA private key.
- LOW
- NETWORK
- NONE
- UNCHANGED
- NONE
- NONE
- HIGH
- NONE
CWE-320 - Key Management Errors
Weaknesses in this category are related to errors in the management of cryptographic keys.
References
Advisory Timeline
- Published