Lucene search
PRIOn knowledge basePRION:CVE-2023-33850HistoryAug 22, 2023 - 9:15 p.m.
Design/Logic Flaw
2023-08-2221:15:00
PRIOn knowledge base
www.prio-n.com
8
ibm
gskit-crypto
remote attacker
sensitive information
timing-based
rsa decryption
implementation
trial messages
vulnerability
nvd
x-force id: 257132
IBM GSKit-Crypto could allow a remote attacker to obtain sensitive information, caused by a timing-based side channel in the RSA Decryption implementation. By sending an overly large number of trial messages for decryption, an attacker could exploit this vulnerability to obtain sensitive information. IBM X-Force ID: 257132.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cics_tx | eq | 11.1 | |
| cics_tx | eq | 10.1 | |
| cics_tx | eq | 11.1 | |
| txseries_for_multiplatform | eq | 8.1 | |
| txseries_for_multiplatform | eq | 9.1 | |
| txseries_for_multiplatform | eq | 8.2 |
Related
cve
cve
CVE-2023-33850
2023-08-22 21:15:07
cvelist
cvelist
CVE-2023-33850 IBM GSKit-Crypto information disclosure
2023-08-22 20:31:25
nvd
nvd
CVE-2023-33850
2023-08-22 21:15:07
ibm
ibm
nessus
nessus
IBM Java 8.0 < 8.0.8.20
2024-02-11 00:00:00
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2024-03-07 15:16:48
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:0619-1)
2024-02-27 00:00:00