CVE-2015-3167

Published: 2019-11-20T21:15Z

Last Modified: 2024-11-21T02:28Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

contrib/pgcrypto in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 uses different error responses when an incorrect key is used, which makes it easier for attackers to obtain the key via a brute force attack. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt