A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. This issue may result in the potential leak of private data.
References
Configurations
History
03 Sep 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
23 Mar 2024, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
16 Mar 2024, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
16 Mar 2024, 02:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
26 Feb 2024, 16:27
Type | Values Removed | Values Added |
---|---|---|
References |
|
09 Feb 2024, 01:00
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.9 |
First Time |
Redhat
Redhat enterprise Linux Opensc Project Opensc Project opensc |
|
References | () https://github.com/OpenSC/OpenSC/wiki/CVE-2023-5992 - Vendor Advisory | |
References | () https://bugzilla.redhat.com/show_bug.cgi?id=2248685 - Issue Tracking | |
References | () https://access.redhat.com/security/cve/CVE-2023-5992 - Third Party Advisory | |
CWE | CWE-203 | |
CPE | cpe:2.3:a:opensc_project:opensc:*:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:* |
31 Jan 2024, 14:28
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-01-31 14:15
Updated : 2024-09-03 17:15
NVD link : CVE-2023-5992
Mitre link : CVE-2023-5992
CVE.ORG link : CVE-2023-5992
JSON object : View
Products Affected
opensc_project
- opensc
redhat
- enterprise_linux
CWE
CWE-203
Observable Discrepancy