CVE-2020-25657
N/A
N/A
Summary
A flaw was found in all released versions of m2crypto, where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat from this vulnerability is to confidentiality.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | m2crypto | All released versions of m2crypto | affected |
Weaknesses
- CWE-385: CWE-385
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.