Uploaded image for project: 'Commons VFS'
  1. Commons VFS
  2. VFS-551

BUG - Use of a Broken or Risky Cryptographic Algorithm - DefaultCryptor.java

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.0
    • Fix Version/s: 2.1
    • Labels:
      None

      Description

      Good day,

      We are currently using "Commons-vfs2-2.0" and in the analysis of veracode found this bug in DefaultCryptor.java (near to the line 52) in this class, used "AES":

      Description:

      The use of a broken or risky cryptographic algorithm is an unnecessary risk that may result in the disclosure of sensitive information.

        Attachments

          Activity

            People

            • Assignee:
              b.eckenfels Bernd Eckenfels
              Reporter:
              david.espitia David Camilo Espitia Manrique
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: