CVE-2023-46809 | Node.js Crypto Library privateDecrypt Bleichenbacher timing discrepancy

Posted by Angelo Barbosa | Feb 16, 2024 | CVE

A vulnerability was found in Node.js. It has been classified as problematic. This affects the function privateDecrypt of the component Crypto Library. The manipulation leads to observable timing discrepancy.

This vulnerability is uniquely identified as CVE-2023-46809. The attack can only be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-46809 | Node.js Crypto Library privateDecrypt Bleichenbacher timing discrepancy

Related Posts

CVE-2024-53057 | Linux Kernel up to 6.11.6 qdisc_tree_reduce_backlog iteration

CVE-2024-42485 | pxlrbt filament-excel up to 2.3.2 /filament-excel/{path} path traversal

CVE-2024-26753 | Linux Kernel up to 5.10.211/6.1.79/6.6.18/6.7.6 crypto virtio_crypto_akcipher_session_para stack-based overflow

CVE-2023-6798 | Feedzy RSS Aggregator Plugin up to 4.3.2 on WordPress authorization