Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/02 12:0 a.m.3 views

SUSE SLES15: libgcrypt-devel / libgcrypt20 / libgcrypt20-32bit / etc (SUSE-SU-2025:02464-2)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02464-2 advisory. - CVE-2024-2236: timing-based side-channel flaw in RSA implementation can lead to decryption of RSA ciphertexts bsc1221107. Tenable has...

5.9CVSS6.6AI score0.01114EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-2467

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A timing-based side-channel flaw exists in the perl-Crypt-OpenSSL-RSA package, which could be sufficient to recover plaintext across a network in a...

5.9CVSS6.3AI score0.00516EPSS
Exploits0References4
NVD
NVD
added 2024/04/25 5:15 p.m.19 views

CVE-2024-2467

A timing-based side-channel flaw exists in the perl-Crypt-OpenSSL-RSA package, which could be sufficient to recover plaintext across a network in a Bleichenbacher-style attack. To achieve successful decryption, an attacker would have to be able to send a large number of trial messages. The...

5.9CVSS5.4AI score0.00516EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/04/04 3:24 a.m.17 views

CVE-2024-3296

A timing-based side-channel flaw exists in the rust-openssl package, which could be sufficient to recover a plaintext across a network in a Bleichenbacher-style attack. To achieve successful decryption, an attacker would have to be able to send a large number of trial messages for decryption. The...

5.9CVSS5.3AI score0.00415EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/03/14 6:8 p.m.29 views

CVE-2024-2467

A timing-based side-channel flaw exists in the perl-Crypt-OpenSSL-RSA package, which could be sufficient to recover plaintext across a network in a Bleichenbacher-style attack. To achieve successful decryption, an attacker would have to be able to send a large number of trial messages. The...

5.9CVSS5.3AI score0.00516EPSS
Exploits0References5
NVD
NVD
added 2024/03/06 10:15 p.m.25 views

CVE-2024-2236

A timing-based side-channel flaw was found in libgcrypt's RSA implementation. This issue may allow a remote attacker to initiate a Bleichenbacher-style attack, which can lead to the decryption of RSA ciphertexts...

5.9CVSS5.6AI score0.01114EPSS
Exploits0References6
CVE
CVE
added 2024/03/06 10:7 p.m.191 views

CVE-2024-2236

CVE-2024-2236 : IBM bulletin confirms a timing-based side-channel vulnerability in libgcrypt’s RSA implementation. The issue enables a Bleichenbacher-style attack that could decrypt RSA ciphertexts. Root cause: observable timing discrepancies in RSA operations. Affected component: libgcrypt’s RSA...

5.9CVSS7AI score0.01114EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/03/06 10:7 p.m.132 views

CVE-2024-2236 Libgcrypt: vulnerable to marvin attack

A timing-based side-channel flaw was found in libgcrypt's RSA implementation. This issue may allow a remote attacker to initiate a Bleichenbacher-style attack, which can lead to the decryption of RSA ciphertexts...

5.9CVSS6.7AI score0.01114EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2020/07/31 8:13 a.m.46 views

CVE-2020-12400

A side-channel flaw was found in NSS, in the way P-384 and P-521 curves are used in the generation of EDSA signatures, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this...

1.2CVSS1.2AI score0.00268EPSS
Exploits0References4
Slackware Linux
Slackware Linux
added 2018/11/22 6:43 a.m.98 views

[slackware-security] openssl

New openssl packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/openssl-1.0.2q-i586-1slack14.2.txz: Upgraded. This update fixes a timing side-channel flaw on processors which implement...

5.9CVSS0.4AI score0.12154EPSS
Exploits4
ThreatPost
ThreatPost
added 2018/04/26 7:39 p.m.16 views

Microsoft Issues More Spectre Updates For Intel CPUs

Microsoft has released additional Windows 10 mitigations for the Spectre side-channel flaw revealed in January, with an expanded lineup of firmware microcode updates for Intel CPUs that include the Broadwell and Haswell chipsets. The company released two Windows Update packages addressing Spectre...

1.4AI score
Exploits0References7
Rows per page
Query Builder