CVE-2024-2467 | Crypt-OpenSSL-RSA 1.5 on Perl PKCS#1 Padding Marvin Attack timing discrepancy

Posted by Angelo Barbosa | Mar 18, 2024 | CVE

A vulnerability classified as problematic has been found in Crypt-OpenSSL-RSA 1.5 on Perl. Affected is an unknown function of the component PKCS#1 Padding Handler. The manipulation leads to observable timing discrepancy.

This vulnerability is traded as CVE-2024-2467. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-2467 | Crypt-OpenSSL-RSA 1.5 on Perl PKCS#1 Padding Marvin Attack timing discrepancy

Related Posts

CVE-2024-21170 | Oracle MySQL Server up to 8.4.0 Connector Python denial of service

CVE-2024-1897 | Grid Gallery Plugin up to 1.4.3 on WordPress Shortcode code injection

CVE-2024-7558 | Canonical Juju up to 2.9.50/3.1.9/3.3.6/3.4.5/3.5.3 JUJU_CONTEXT_ID weak credentials (GHSA-mh98-763h-m9v4)

CVE-2024-1151 | Linux Kernel up to 6.8-rc3 Open vSwitch Sub-Component stack-based overflow