View all vulnerabilities

CVE-2023-52323

PyCryptodome and pycryptodomex side-channel leakage for OAEP decryption

PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack.

Patch Available

Fix available through Seal Security. No upgrade required, protect your application instantly.

Fix without upgrading
Vulnerability Details
Score
5.2
Score Vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Versions
pycryptodomex < 3.19.1; pycryptodome < 3.19.1
Severity
Medium
Ecosystem
Python
Publish Date
January 5, 2024
Modified Date
October 21, 2024