New: Corgea AI Pentesting — autonomous penetration testing in hours, not weeks
HIGH 7.5 PyPI

Improper input validation in cryptography

GHSA-q3cj-2r34-2cwc · CVE-2016-9243 · PYSEC-2017-8

Published · Modified

Description

HKDF in cryptography before 1.5.3 returns an empty byte-string if used with a length less than algorithm.digest_size.

Ready to move

Start Securing

Free, no credit card | First findings in minutes