Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:10974
HistoryJan 15, 2019 - 8:54 a.m.

Side-channel Attack

2019-01-1508:54:58
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
2

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

JSON

GnuPG is vulnerable to side-channel attacks. An attacker in close physical range to the target system is able to decrypt ciphertexts using acoustic cryptanalysis to recover the RSA secret key belonging to the system.

CPENameOperatorVersion
gnupgeq1.4.5__14.el5_5.1

Related

nessus 19
openvas 26
fedora 5
f5 2
ubuntu 1
mageia 1
debian 1
oraclelinux 1
prion 2
centos 1
slackware 1
securityvulns 2
ubuntucve 2
amazon 2
freebsd 1
cve 2
redhat 1
debiancve 1
rosalinux 1
nessus
nessus
Amazon Linux AMI : gnupg (ALAS-2014-278)
2014-02-05 00:00:00
Oracle Linux 5 : gnupg (ELSA-2014-0016)
2014-01-09 00:00:00
RHEL 5 : gnupg (RHSA-2014:0016)
2014-01-09 00:00:00
openvas
openvas
Ubuntu Update for gnupg USN-2059-1
2013-12-23 00:00:00
Fedora Update for gnupg FEDORA-2013-23603
2014-02-03 00:00:00
Slackware: Security Advisory (SSA:2013-354-01)
2022-04-21 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: gnupg-1.4.17-1.fc20
2014-06-27 02:28:57
[SECURITY] Fedora 20 Update: gnupg-1.4.16-2.fc20
2013-12-23 03:48:29
[SECURITY] Fedora 20 Update: gnupg-1.4.19-2.fc20
2015-03-14 09:16:09
f5
f5
SOL16396 - GnuPG vulnerability CVE-2013-4576
2015-04-09 00:00:00
K16396 : GnuPG vulnerability CVE-2013-4576
2015-04-09 00:00:00
ubuntu
ubuntu
GnuPG vulnerability
2013-12-18 00:00:00
mageia
mageia
Updated gnupg package fixes CVE-2013-4576
2013-12-20 21:29:34
debian
debian
[SECURITY] [DSA 2821-1] gnupg security update
2013-12-18 15:05:12
oraclelinux
oraclelinux
gnupg security update
2014-01-08 00:00:00
prion
prion
Code injection
2013-12-20 21:55:00
Code injection
2014-10-10 01:55:00
centos
centos
gnupg security update
2014-01-08 22:53:33
slackware
slackware
[slackware-security] gnupg
2013-12-21 19:34:33
securityvulns
securityvulns
GnuPG acoustic attack
2013-12-23 00:00:00
[USN-2059-1] GnuPG vulnerability
2013-12-23 00:00:00
ubuntucve
ubuntucve
CVE-2013-4576
2013-12-18 00:00:00
CVE-2014-5270
2014-08-18 00:00:00
amazon
amazon
Medium: gnupg
2014-01-14 16:18:00
Medium: libgcrypt
2015-08-04 17:43:00
freebsd
freebsd
gnupg -- RSA Key Extraction via Low-Bandwidth Acoustic Cryptanalysis attack
2013-12-18 00:00:00
cve
cve
CVE-2013-4576
2013-12-20 21:55:00
CVE-2014-5270
2014-10-10 01:55:00
redhat
redhat
(RHSA-2014:0016) Moderate: gnupg security update
2014-01-08 00:00:00
debiancve
debiancve
CVE-2014-5270
2014-10-10 01:55:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1870
2021-07-02 17:14:28

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

JSON
Related for VERACODE:10974
nessus19openvas26fedora5f52ubuntu1mageia1debian1oraclelinux1prion2centos1slackware1securityvulns2ubuntucve2amazon2freebsd1cve2redhat1debiancve1rosalinux1