Beaker prior to 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote malicious users to obtain portions of sensitive session data via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
python beaker |