Weaknesses of type CWE-208
140 resultsCVE-2023-25806MEDIUMTime discrepancy in authentication responses in OpenSearchEPSS 0.3%CVE-2023-40182LOWsilverware-io-issue-tracker server responds in a noticeably different amount of time depending if a given email address exists or notEPSS 0.3%CVE-2024-13939HIGHString::Compare::ConstantTime for Perl through 0.321 is vulnerable to timing attacks that allow an attacker to guess the length of a secret stringEPSS 0.3%CVE-2026-54411MEDIUMLinux-PAM through 1.7.2 contains an observable timing discrepancy (CWE-208) in the pam_userdb module's plaintext-password comparison path inEPSS 0.3%CVE-2026-32702MEDIUMCleanuparr has Username Enumeration via Timing AttackEPSS 0.3%CVE-2026-33129MEDIUMh3 has an observable timing discrepancy in basic auth utilsEPSS 0.3%CVE-2017-20240MEDIUMCrypt::PBKDF2 versions before 0.261630 for Perl are vulnerable to timing attacksEPSS 0.3%CVE-2024-36469LOWUser enumeration via timing attack in Zabbix web interfaceEPSS 0.3%CVE-2021-26318—Side-channels Related to the x86 PREFETCH InstructionEPSS 0.3%CVE-2025-59350LOWTiming attacks against Proxy’s basic authentication are possibleEPSS 0.3%CVE-2026-44368MEDIUMPyQuorum: Timing side‑channel in mul_modEPSS 0.3%CVE-2024-0202MEDIUMCryptlib: rsa key exchange ciphersuites in tls vulnerable to marvin attackEPSS 0.3%CVE-2021-31403MEDIUMTiming side channel vulnerability in UIDL request handler in Vaadin 7 and 8EPSS 0.3%CVE-2024-41741MEDIUMIBM TXSeries for Multiplatforms information disclosureEPSS 0.3%CVE-2021-34337MEDIUMAn issue was discovered in Mailman Core before 3.3.5. An attacker with access to the REST API could use timing attacks to determine the valuEPSS 0.3%CVE-2023-41097MEDIUMPotential Timing vulnerability in CBC PKCS7 padding calculationsEPSS 0.3%CVE-2025-30344MEDIUMAn issue was discovered in OpenSlides before 4.2.5. During login at the /system/auth/login/ endpoint, the system's response times differ depEPSS 0.3%CVE-2026-28475MEDIUMOpenClaw < 2026.2.13 - Timing Attack via Hook Token ComparisonEPSS 0.3%CVE-2024-41828LOWIn JetBrains TeamCity before 2024.07 comparison of authorization tokens took non-constant timeEPSS 0.3%CVE-2025-27936MEDIUMWebhook Secret Exposure via Timing attack in MSteams pluginEPSS 0.3%