Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-6240HistoryFeb 04, 2024 - 2:15 p.m.
CVE-2023-6240
2024-02-0414:15:47
Debian Security Bug Tracker
security-tracker.debian.org
24
cve-2023-6240
side-channel
leakage
rsa
decryption
linux kernel
network attacker
ciphertexts
forge signatures
private key
unix
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N
AI Score
6.9
Confidence
Low
EPSS
0.001
Percentile
46.8%
A Marvin vulnerability side-channel leakage was found in the RSA decryption operation in the Linux Kernel. This issue may allow a network attacker to decrypt ciphertexts or forge signatures, limiting the services that use that private key.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | <= 6.1.106-3 | linux_6.1.106-3_all.deb |
| Debian | 11 | all | linux | <= 5.10.223-1 | linux_5.10.223-1_all.deb |
| Debian | 999 | all | linux | <= 6.10.11-1 | linux_6.10.11-1_all.deb |
| Debian | 13 | all | linux | <= 6.10.9-1 | linux_6.10.9-1_all.deb |
Related
redhatcve
redhatcve
CVE-2023-6240
2024-02-04 14:10:58
nvd
nvd
CVE-2023-6240
2024-02-04 14:15:47
cve
cve
CVE-2023-6240
2024-02-04 14:15:47
cvelist
cvelist
prion
prion
Code injection
2024-02-04 14:15:00
ubuntucve
ubuntucve
CVE-2023-6240
2024-02-04 00:00:00
nessus
nessus
CentOS 9 : kernel-5.14.0-430.el9
2024-04-26 00:00:00
RHEL 9 : kernel (RHSA-2024:2758)
2024-05-08 00:00:00
Oracle Linux 9 : kernel (ELSA-2024-2758)
2024-05-09 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2024-05-08 00:00:00
kernel update
2024-06-05 00:00:00
osv
osv
Moderate: kernel security and bug fix update
2024-05-10 14:32:32
Moderate: kernel-rt security and bug fix update
2024-06-14 13:59:36
Moderate: kernel-rt security and bug fix update
2024-06-05 00:00:00
rocky
rocky
kernel security and bug fix update
2024-05-10 14:32:32
kernel-rt security and bug fix update
2024-06-14 13:59:36
kernel update
2024-06-14 13:59:16
redhat
redhat
(RHSA-2024:1882) Important: kernel-rt security and bug fix update
2024-04-18 00:58:57
(RHSA-2024:2758) Moderate: kernel security and bug fix update
2024-05-08 00:02:33
(RHSA-2024:1881) Moderate: kernel security and bug fix update
2024-04-18 00:58:54
ibm
ibm
almalinux
almalinux
Moderate: kernel-rt security and bug fix update
2024-06-05 00:00:00
Moderate: kernel update
2024-06-05 00:00:00
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N
AI Score
6.9
Confidence
Low
EPSS
0.001
Percentile
46.8%
Related for DEBIANCVE:CVE-2023-6240