CVE-2017-3156 Blast Radius
HIGH • CVSS 7.5The OAuth2 Hawk and JOSE MAC Validation code in Apache CXF prior to 3.0.13 and 3.1.x prior to 3.1.10 is not using a constant time MAC signature compar…
Is Your Infrastructure Using These Packages?
EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2017-3156.