CVE-2024-22893

Published: 2024-09-25T15:15Z

Last Modified: 2024-09-26T14:35Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

OpenSlides 4.0.15 verifies passwords by comparing password hashes using a function with content-dependent runtime. This can allow attackers to obtain information about the password hash using a timing attack. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt