CVE-2014-9720
MEDIUM6.5EPSS 0.78%Tornado XSRF cookie allows side-channel attack against TLS (BREACH attack)
發布日:2022/5/17修改日:2024/11/13
描述
Tornado before 3.2.2 sends arbitrary responses that contain a fixed CSRF token and may be sent with HTTP compression, which makes it easier for remote attackers to conduct a BREACH attack and determine this token via a series of crafted requests.
受影響套件(5)
- Debian/python-tornadofrom 0, < 3.2.2-1
- Debian/python-tornadofrom 0, < 1.0.1-1+deb6u1
- Debian/python-tornadofrom 0, < 2.3-2+deb7u1
- PyPI/tornadofrom 0, < 3.2.2
- PyPI/tornadofrom 0, < 1c36307463b1e8affae100bf9386948e6c1b2308 | from 0, < 3.2.2
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 4.0 | — | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |
參考連結(9)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2014-9720
- ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-9720
- PATCHhttps://github.com/tornadoweb/tornado
- WEBhttp://openwall.com/lists/oss-security/2015/05/19/4
- WEBhttps://bugzilla.novell.com/show_bug.cgi?id=930362
- WEBhttps://bugzilla.redhat.com/show_bug.cgi?id=1222816
- WEBhttps://github.com/pypa/advisory-database/tree/main/vulns/tornado/PYSEC-2020-213.yaml
- WEBhttps://github.com/tornadoweb/tornado/commit/1c36307463b1e8affae100bf9386948e6c1b2308
- WEBhttp://www.tornadoweb.org/en/stable/releases/v3.2.2.html