Back to search
CVE-2013-6394
Published: Dec 13, 2013
Modified: Aug 6, 2024
PUBLISHED
Description
Percona XtraBackup before 2.1.6 uses a constant string for the initialization vector (IV), which makes it easier for local users to defeat cryptographic protection mechanisms and conduct plaintext attacks.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
openSUSE-SU-2013:1864
vendor-advisory
x_refsource_SUSE
openSUSE-SU-2014:0245
vendor-advisory
x_refsource_SUSE
[oss-security] 20131126 Re: CVE Request: static IV used in Percona XtraBackup
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now