Timing attacks in python-rsa
Moderate severity
GitHub Reviewed
Published
Apr 30, 2021
to the GitHub Advisory Database
•
Updated Feb 13, 2023
Description
Published by the National Vulnerability Database
Nov 12, 2020
Reviewed
Apr 20, 2021
Published to the GitHub Advisory Database
Apr 30, 2021
Last updated
Feb 13, 2023
It was found that python-rsa is vulnerable to Bleichenbacher timing attacks. An attacker can use this flaw via the RSA decryption API to decrypt parts of the cipher text encrypted with RSA
References