CVE-2020-25659

Published January 11th, 2021

View on NVD ↗

CVSS v3

5.9

MEDIUM

CVSS v2

4.3

MEDIUM

Affected

PROJECT

Description

python-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks in the RSA decryption API, via timed processing of valid PKCS#1 v1.5 ciphertext.

pyca/cryptography

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers.

GitHub

7.61K