Lucene search

K
osvGoogleOSV:CVE-2020-25659
HistoryJan 11, 2021 - 4:15 p.m.

CVE-2020-25659

2021-01-1116:15:15
Google
osv.dev
8
python-cryptography rsa decryption vulnerability bleichenbacher timing attack pkcs#1 v1.5 ciphertext software security

EPSS

0.001

Percentile

44.7%

python-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks in the RSA decryption API, via timed processing of valid PKCS#1 v1.5 ciphertext.