exploitDog

GHSA-7645-rq2j-w93j

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.9

Описание

RSA BSAFE SSL-J versions prior to 6.2.4 contain a Covert Timing Channel vulnerability during RSA decryption, also known as a Bleichenbacher attack on RSA decryption. A remote attacker may be able to recover a RSA key.

RSA BSAFE SSL-J versions prior to 6.2.4 contain a Covert Timing Channel vulnerability during RSA decryption, also known as a Bleichenbacher attack on RSA decryption. A remote attacker may be able to recover a RSA key.

Ссылки

EPSS

Процентиль: 51%

0.00279

Низкий

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-327

Связанные уязвимости

CVE-2018-11069

CVSS3: 5.9

nvd

больше 7 лет назад

RSA BSAFE SSL-J versions prior to 6.2.4 contain a Covert Timing Channel vulnerability during RSA decryption, also known as a Bleichenbacher attack on RSA decryption. A remote attacker may be able to recover a RSA key.

EPSS

Процентиль: 51%

0.00279

Низкий

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-327