CVE-2021-37848 Blast Radius

HIGH • CVSS 7.5common/password.c in Pengutronix barebox through 2021.07.0 leaks timing information because strncmp is used during hash comparison.

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2021-37848.

Start Free Scan →← Back to CVE-2021-37848