Filtered by vendor Python-cryptography Project
Subscribe
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-50782 | 2 Python-cryptography Project, Redhat | 4 Python-cryptography, Ansible Automation Platform, Enterprise Linux and 1 more | 2024-02-26 | N/A | 7.5 HIGH |
| A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data. | |||||
| CVE-2020-25659 | 2 Oracle, Python-cryptography Project | 2 Communications Cloud Native Core Network Function Cloud Native Environment, Python-cryptography | 2023-12-10 | 4.3 MEDIUM | 5.9 MEDIUM |
| python-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks in the RSA decryption API, via timed processing of valid PKCS#1 v1.5 ciphertext. | |||||