CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-32342

IBM GSKit could allow a remote attacker to obtain sensitive information, caused by a timing-based side channel in the RSA Decryption implementation. By sending an overly large number of trial messages for decryption, an attacker could exploit this vulnerability to obtain sensitive information. IBM X-Force ID: 255828.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.4%

CVSS Severity

CVSS v3 Score 7.5

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/255828
https://exchange.xforce.ibmcloud.com/vulnerabilities/255828

Products affected by CVE-2023-32342

Ibm » Http Server » Version: 8.5.0.0

cpe:2.3:a:ibm:http_server:8.5.0.0
Ibm » Http Server » Version: 8.5.5.23

cpe:2.3:a:ibm:http_server:8.5.5.23
Ibm » Http Server » Version: 8.5.5.6

cpe:2.3:a:ibm:http_server:8.5.5.6
Ibm » Http Server » Version: 8.5.5.7

cpe:2.3:a:ibm:http_server:8.5.5.7
Ibm » Http Server » Version: 9.0.0.0

cpe:2.3:a:ibm:http_server:9.0.0.0
Ibm » Http Server » Version: 9.0.5.15

cpe:2.3:a:ibm:http_server:9.0.5.15

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-32342

Products

Pricing

Contact Us