EUVD-2024-27192

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Timing-based side-channel flaw in libgcrypt's RSA allows remote Bleichenbacher-style attack.

Reporter	Title	Published	Views	Family All 99
IBM Security Bulletins	Security Bulletin: Security vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify Access	5 Jan 202600:41	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data v4.8.7 is vulnerable to multiple Base OS issues	15 Apr 202503:13	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in multiple components affect IBM SAN Volume Controller, IBM Spectrum Virtualize and IBM FlashSystem products	30 Jun 202513:34	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container UBI updates	2 Sep 202514:07	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge v5.1.1 is vulnerable to multiple Base OS issues	2 Apr 202517:41	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities in RedHat UBI affect IBM Robotic Process Automation for Cloud Pak	21 Jan 202520:59	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in Hyper Converged Database	21 Jan 202610:51	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities were discovered in IBM Application Gateway	4 Jun 202523:00	–	ibm
IBM Security Bulletins	Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to Kerberos 5, OpenSSL, libexpat, golang-jwt, and GnuPG Libgcrypt	6 Dec 202412:00	–	ibm
Tenable Nessus	Amazon Linux 2023 : libgcrypt, libgcrypt-devel (ALAS2023-2024-736)	14 Oct 202400:00	–	nessus

[
  {
    "enisaIdVendor": [
      {
        "id": "1fcfcea0-f307-3bba-942f-da87c40a2102",
        "vendor": {
          "name": "Red Hat"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0599cf96-d0b4-3ba2-bb3c-23e4fd6d26bb",
        "product": {
          "name": "Red Hat Enterprise Linux 9.4 Extended Update Support"
        },
        "product_version": "patch: 0:1.10.0-10.el9_4.1"
      },
      {
        "id": "098253be-56d2-3493-a546-76e32549d476",
        "product": {
          "name": "Red Hat Enterprise Linux 9"
        }
      },
      {
        "id": "2392d113-bbdb-3a76-8650-1db68272502e",
        "product": {
          "name": "Red Hat Enterprise Linux 9"
        },
        "product_version": "patch: 0:1.10.0-11.el9"
      },
      {
        "id": "64415832-d914-3ad7-acf4-872e14035473",
        "product": {
          "name": "Red Hat Enterprise Linux 9.2 Extended Update Support"
        },
        "product_version": "patch: 0:1.10.0-10.el9_2.1"
      },
      {
        "id": "851721c2-8615-315f-a0ef-317a6caa1ded",
        "product": {
          "name": "Red Hat Enterprise Linux 8"
        }
      },
      {
        "id": "8e4695a1-ddff-3ca5-91f6-4a932f8cde53",
        "product": {
          "name": "Red Hat Enterprise Linux 6"
        }
      },
      {
        "id": "fb753e25-7275-3328-b1c3-2a63901045ec",
        "product": {
          "name": "Red Hat Enterprise Linux 7"
        }
      }
    ]
  }
]

Source	Link
access	www.access.redhat.com/security/cve/CVE-2024-2236
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
access	www.access.redhat.com/errata/RHSA-2024:9404
access	www.access.redhat.com/errata/RHSA-2025:3530
access	www.access.redhat.com/errata/RHSA-2025:3534
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-2236

03 Oct 2025 20:07Current

7.2High risk

Vulners AI Score7.2

CVSS 3.15.9

EPSS0.00684

SSVC