CVE-2014-125056: Pylons horus services.py timing discrepancy
First published: Sat Jan 07 2023(Updated: )
A vulnerability was found in Pylons horus and classified as problematic. Affected by this issue is some unknown functionality of the file horus/flows/local/services.py. The manipulation leads to observable timing discrepancy. The complexity of an attack is rather high. The exploitation is known to be difficult. The patch is identified as fd56ccb62ce3cbdab0484fe4f9c25c4eda6c57ec. It is recommended to apply a patch to fix this issue. VDB-217598 is the identifier assigned to this vulnerability.
Credit: cna@vuldb.com cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Pylonsproject Horus | <2014-05-07 | |
| <2014-05-07 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the CVE ID of this vulnerability in Pylons horus?
The CVE ID of this vulnerability in Pylons horus is CVE-2014-125056.
What is the affected software in this vulnerability?
The affected software in this vulnerability is Pylonsproject Horus.
What is the severity of CVE-2014-125056?
The severity of CVE-2014-125056 is medium.
What is the complexity of an attack for this vulnerability?
The complexity of an attack for this vulnerability is rather high.
How can I fix this vulnerability?
To fix this vulnerability, update Pylons horus to a version released after May 7, 2014.
- collector/nvd-index
- agent/author
- agent/type
- agent/weakness
- agent/remedy
- agent/references
- agent/description
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/severity
- agent/last-modified-date
- agent/tags
- agent/event
- agent/first-publish-date
- vendor/pylonsproject
- canonical/pylonsproject horus