Vulnerability in Miyagawa Plack::middleware::session

CVE-2013-10031

Plack-Middleware-Session versions before 0.17 may be vulnerable to HMAC comparison timing attacks

EPSS: 0.000 (13.0th percentile) — read the EPSS interpretation.

Affected products

Miyagawa Plack::middleware::session — versions 0.01

Weakness classification (CWE)

CWE-1254

References

github.com/plack/Plack-Middleware-Session/commit/b7f0252269ba1bb812b5dc02303754… (patch)