AZL-34739 CVE-2024-0553 affecting package gnutls for versions less than 3.8.3-1

🗓️ 16 Jan 2024 12:15:45Reported by GoogleType

osv🔗 osv.dev👁 2 Views

GnuTLS RSA-PSK timing side-channel leaks data from malformed ciphertexts; vulnerable versions below 3.8.3-1.

Reporter	Title	Published	Views	Family All 178
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM webMethods API Management	25 Apr 202510:44	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Network Automation 2.7.2 addresses multiple security vulnerabilities	24 Apr 202415:52	–	ibm
IBM Security Bulletins	Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from go-git , Golang, GnuTLS, Libxml2, protobuf-c, JSON-java, Libmaxminddb, SQLite3 packages and cryptographic algorithms	1 Mar 202405:14	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is affected by multiple Linux Kernel vulnerabilities	15 May 202417:32	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM webMethods Managed File Transfer	25 Apr 202510:53	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Storage Ceph is vulnerable to an Observable Discrepancy in the RHEL UBI (CVE-2024-0553)	5 Aug 202421:40	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Technical Support Appliance - possible exposure of sensitive information	21 Nov 202421:37	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Packet Capture includes components with multiple known vulnerabilities	15 Apr 202502:50	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities	29 Apr 202502:35	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Observability with Instana (OnPrem) is affected by Multiple Security Vulnerabilities	30 May 202411:23	–	ibm

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-0553

21 Apr 2026 04:27Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.17.5

EPSS0.01028