← Back to CVE List

CVE-2017-15423

Published: 2018-08-28T19:29Z
Last Modified: 2024-11-21T03:14Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Inappropriate implementation in BoringSSL SPAKE2 in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to leak the low-order bits of SHA512(password) by inspecting protocol traffic. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt