CVE-2020-25659

Опубликовано: 11 янв. 2021

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.3

CVSS3: 5.9

Описание

python-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks in the RSA decryption API, via timed processing of valid PKCS#1 v1.5 ciphertext.

Релиз	Статус	Примечание
bionic	released	2.1.4-1ubuntu1.4
devel	released	3.2.1-1
esm-infra-legacy/trusty	DNE
esm-infra/bionic	released	2.1.4-1ubuntu1.4
esm-infra/focal	released	2.8-3ubuntu0.1
esm-infra/xenial	released	1.2.3-1ubuntu0.3
focal	released	2.8-3ubuntu0.1
groovy	released	3.0-1ubuntu0.1
precise/esm	DNE
trusty	ignored	end of standard support

Показывать по

Ссылки на источники

EPSS

Процентиль: 48%

0.00252

Низкий

4.3 Medium

CVSS2

5.9 Medium

CVSS3

Связанные уязвимости

CVE-2020-25659

CVSS3: 5.9

redhat

больше 5 лет назад

python-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks in the RSA decryption API, via timed processing of valid PKCS#1 v1.5 ciphertext.

CVE-2020-25659

CVSS3: 5.9

nvd

около 5 лет назад

python-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks in the RSA decryption API, via timed processing of valid PKCS#1 v1.5 ciphertext.

CVE-2020-25659

CVSS3: 5.9

msrc

около 5 лет назад

python-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks in the RSA decryption API via timed processing of valid PKCS#1 v1.5 ciphertext.

CVE-2020-25659

CVSS3: 5.9

debian

около 5 лет назад

python-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks ...

openSUSE-SU-2020:2173-1

suse-cvrf

около 5 лет назад

Security update for python-cryptography

EPSS

Процентиль: 48%

0.00252

Низкий

4.3 Medium

CVSS2

5.9 Medium

CVSS3

CVE-2020-25659

Описание

Пакет python-cryptography

Ссылки на источники

Связанные уязвимости