CVE-2020-25658

CVSS v4.0

8.2

High

Vector

AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions python-rsa (affected versions not specified)

Description It was found that python-rsa is vulnerable to Bleichenbacher timing attacks. An attacker can use this flaw via the RSA decryption API to decrypt parts of the cipher text encrypted with RSA.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use of a Broken Cryptographic Algorithm

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-385CWE-327

Related Identifiers

ALT-PU-2021-2514

ALT-PU-2025-1659

CVE-2020-25658

ECHO-28AB-14A8-957A

GHSA-XRX6-FMXQ-RJJ2

MGASA-2021-0456

OPENSUSE-SU-2022_3932-1

OPENSUSE-SU-2024:11269-1

OPENSUSE-SU-2024:14163-1

PYSEC-2020-100

RHSA-2020:5634

RHSA-2021:0637

RHSA-2022:1716

SUSE-SU-2022:3932-1

SUSE-SU-2022_3932-1

SUSE-SU-2023:0648-1

SUSE-SU-2023_0648-1

Affected Products

Alt Linux

Debian

Suse

Python-Rsa

CVE-2020-25658

Weakness Enumeration

Related Identifiers

Affected Products

References · 42