Common Cryptographic Architecture@* Security Vulnerabilities and Issues — Common Cryptographic Architecture@* CVE List

Lucene search

IbmCommon Cryptographic Architecture*

6 matches found

CVE•added 2024/03/26 2:15 p.m.•65 views

CVE-2023-33855

Under certain conditions, RSA operations performed by IBM Common Cryptographic Architecture (CCA) 7.0.0 through 7.5.36 may exhibit non-constant-time behavior. This could allow a remote attacker to obtain sensitive information using a timing-based attack. IBM X-Force ID: 257676.

3.7CVSS3.7AI score0.0007EPSS

CVE•added 2024/03/26 2:15 p.m.•51 views

CVE-2023-47150

IBM Common Cryptographic Architecture (CCA) 7.0.0 through 7.5.36 could allow a remote user to cause a denial of service due to incorrect data handling for certain types of AES operations. IBM X-Force ID: 270602.

7.5CVSS7.3AI score0.00089EPSS

CVE•added 2022/09/23 6:15 p.m.•49 views

CVE-2022-22423

IBM Common Cryptographic Architecture (CCA 5.x MTM for 4767 and CCA 7.x MTM for 4769) could allow a local user to cause a denial of service due to improper input validation. IBM X-Force ID: 223596.

6.5CVSS5.3AI score0.00019EPSS

CVE•added 2025/03/11 1:15 a.m.•42 views

CVE-2024-49823

IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow an authenticated user to cause a denial of service in the Hardware Security Module (HSM) using a specially crafted sequence of valid requests.

6.5CVSS6.7AI score0.00074EPSS

CVE•added 2025/03/11 1:15 a.m.•40 views

CVE-2024-22340

IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow a remote attacker to obtain sensitive information during the creation of ECDSA signatures to perform a timing-based attack.

6.5CVSS6.5AI score0.00041EPSS

CVE•added 2025/03/11 1:15 a.m.•40 views

CVE-2024-41760

IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow an attacker to obtain sensitive information due to a timing attack during certain RSA operations.

3.7CVSS6.4AI score0.00027EPSS