Lucene search
K

55 matches found

OpenVAS
OpenVAS
added 2024/03/12 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for python-pycryptodome (EulerOS-SA-2024-1248)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS5.8AI score0.00618EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/03/12 12:0 a.m.39 views

EulerOS 2.0 SP11 : python-pycryptodome (EulerOS-SA-2024-1248)

According to the versions of the python-pycryptodome package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack...

5.9CVSS6.9AI score0.00618EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/02/29 7:47 p.m.2 views

pycryptodome: side-channel leakage for OAEP decryption in PyCryptodome and pycryptodomex

A flaw was found in PyCryptodome/pycryptodomex which may allow for side-channel leakage when performing OAEP decryption, which could be exploited to carry out a Manger attack...

5.9CVSS5.7AI score0.00618EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/02/24 12:0 a.m.31 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-pycryptodome (SUSE-SU-2024:0601-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:0601-1 advisory. - CVE-2023-52323: Fixed side-channel leakage in RSA decryption by using constant-time faster padding...

5.9CVSS6.5AI score0.00618EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/02/23 12:0 a.m.14 views

SUSE SLES15 Security Update : python-pycryptodome (SUSE-SU-2024:0585-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:0585-1 advisory. - CVE-2023-52323: Fixed side-channel leakage in RSA decryption by using constant-time faster padding decoding for OAEP bsc1218564. Tenable h...

5.9CVSS6.5AI score0.00618EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/02/21 12:0 a.m.43 views

SUSE SLES15 / openSUSE 15 Security Update : python-pycryptodomex (SUSE-SU-2024:0557-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:0557-1 advisory. - CVE-2023-52323: Fixed a side-channel in the OAEP decryption, exploitable by a Manger attack bsc1218564. Tenable has extracted the...

5.9CVSS6.5AI score0.00618EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/01/24 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-6595-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS5.8AI score0.00618EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2024/01/23 1:39 p.m.62 views

USN-6595-1: PyCryptodome vulnerability

It was discovered that PyCryptodome had a timing side-channel when performing OAEP decryption. A remote attacker could possibly use this issue to recover sensitive information...

5.9CVSS7.1AI score0.00618EPSS
Exploits0
OSV
OSV
added 2024/01/23 1:39 p.m.4 views

USN-6595-1 pycryptodome vulnerability

It was discovered that PyCryptodome had a timing side-channel when performing OAEP decryption. A remote attacker could possibly use this issue to recover sensitive information...

5.9CVSS6.7AI score0.00618EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/23 12:0 a.m.34 views

Ubuntu 22.04 LTS : PyCryptodome vulnerability (USN-6595-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-6595-1 advisory. It was discovered that PyCryptodome had a timing side-channel when performing OAEP decryption. A remote attacker could possibly use this issue to recover sensitiv...

5.9CVSS7AI score0.00618EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/23 12:0 a.m.20 views

Amazon Linux 2023 : python3-pycryptodomex, python3-pycryptodomex-selftest (ALAS2023-2024-494)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-494 advisory. PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack. CVE-2023-52323 Tenable has extracted the preceding description block directl...

5.9CVSS6.8AI score0.00618EPSS
Exploits0References4
Amazon
Amazon
added 2024/01/22 12:0 a.m.6 views

Medium: python-pycryptodomex

Issue Overview: PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack. CVE-2023-52323 Affected Packages: python-pycryptodomex Issue Correction: Run dnf update python-pycryptodomex --releasever 2023.3.20240122 to update your...

5.9CVSS7AI score0.00618EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/01/12 12:0 a.m.154 views

PyCryptodome < 3.19.1 Side Channel Leak

The version of PyCryptodome installed on the remote host is prior to 3.19.1. It is, therefore, affected by a vulnerability. - A side-channel leakage with OAEP decryption could be exploited to carry out a Manger attack. CVE-2023-52323 Note that Nessus has not tested for this issue but has instead...

5.9CVSS6.9AI score0.00618EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2024/01/06 10:21 a.m.66 views

CVE-2023-52323

A flaw was found in PyCryptodome/pycryptodomex which may allow for side-channel leakage when performing OAEP decryption, which could be exploited to carry out a Manger attack...

5.9CVSS5.3AI score0.00618EPSS
Exploits0References5
OSV
OSV
added 2024/01/05 6:30 a.m.7 views

GHSA-J225-CVW7-QRX7 PyCryptodome and pycryptodomex side-channel leakage for OAEP decryption

PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack...

7.1CVSS6.7AI score0.00618EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2024/01/05 6:30 a.m.48 views

PyCryptodome and pycryptodomex side-channel leakage for OAEP decryption

PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack...

5.9CVSS7.2AI score0.00618EPSS
Exploits0References6Affected Software2
AlpineLinux
AlpineLinux
added 2024/01/05 4:15 a.m.48 views

CVE-2023-52323

PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack...

2.6CVSS7.1AI score0.00618EPSS
Exploits0
OSV
OSV
added 2024/01/05 4:15 a.m.2 views

DEBIAN-CVE-2023-52323

PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack...

5.9CVSS5.9AI score0.00618EPSS
Exploits0References1
PyPA
PyPA
added 2024/01/05 4:15 a.m.7 views

PYSEC-2024-3

PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack...

5.9CVSS7AI score0.00618EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2024/01/05 4:15 a.m.30 views

Crlf injection

PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack...

2.6CVSS7AI score0.00618EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder