Permalink
CVE-2023-50781
5.9 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): HIGH
- Privileges required (PR): NONE
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): NONE
- Availability impact (A): NONE
M2crypto: bleichenbacher timing attacks in the rsa decryption api - incomplete fix for cve-2020-25657
A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.
References
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT x_transferred
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- https://access.redhat.com/security/cve/CVE-2023-50781 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT x_transferred
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- https://access.redhat.com/security/cve/CVE-2023-50781 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- RHBZ#2254426 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-50781 x_transferred x_refsource_REDHAT vdb-entry
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-50781 x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-50781 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2254426 issue-tracking x_refsource_REDHAT x_transferred
Affected products
pywbem
m2crypto
virt-who
Matching in nixpkgs
pkgs.python312Packages.pywbem
Support for the WBEM standard for systems management
-
nixos-unstable -
- nixpkgs-unstable 1.7.3
pkgs.python313Packages.pywbem
Support for the WBEM standard for systems management
-
nixos-unstable -
- nixpkgs-unstable 1.7.3
pkgs.python312Packages.m2crypto
Python crypto and SSL toolkit
-
nixos-unstable -
- nixpkgs-unstable m2crypto-0.45.1
pkgs.python313Packages.m2crypto
Python crypto and SSL toolkit
-
nixos-unstable -
- nixpkgs-unstable m2crypto-0.45.1