Misagh Moayyed

2 exploits Active since Jan 2020
CVE-2020-7226 WRITEUP HIGH WRITEUP
Cryptacular < 1.1.4 - Denial of Service via Excessive Memory Allocation in CiphertextHeader
CiphertextHeader.java in Cryptacular 1.2.3, as used in Apereo CAS and other products, allows attackers to trigger excessive memory allocation during a decode operation, because the nonce array length associated with "new byte" may depend on untrusted input within the header of encoded data.
CVSS 7.5
CVE-2020-7226 WRITEUP HIGH WRITEUP
Cryptacular < 1.1.4 - Denial of Service via Excessive Memory Allocation in CiphertextHeader
CiphertextHeader.java in Cryptacular 1.2.3, as used in Apereo CAS and other products, allows attackers to trigger excessive memory allocation during a decode operation, because the nonce array length associated with "new byte" may depend on untrusted input within the header of encoded data.
CVSS 7.5