Inadequate Encryption Strength
CVE-2020-6763
Summary
All versions of parsel are affected by Insecure Encryption. Attackers might leverage a weakness in the key derivation function to achieve week encryption.
- HIGH
- NETWORK
- LOW
- UNCHANGED
- NONE
- NONE
- HIGH
- LOW
CWE-326 - Inadequate Encryption Strength
The software stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.
Advisory Timeline
- Published
