CVE-2024-41760

Summary

IBM Common Cryptographic Architecture 7.0.0 through 7.5.51

could allow an attacker to obtain sensitive information due to a timing attack during certain RSA operations.

Affected Software

VendorProductVersion RangeStatus
IBMCommon Cryptographic Architecture7.0.0 <= 7.5.51affected
IBM4769 Developers Toolkit7.0.0 <= 7.5.51affected

Weaknesses

  • CWE-203: CWE-203 Observable Discrepancy

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References