Home > Vulnerability Database > CVE-2023-50781

Mend.io Vulnerability Database

CVE-2023-50781

Date: February 5, 2024

A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.

Severity Score

7.5

Related Resources (6)

Url: https://gitlab.com/m2crypto/m2crypto/-/issues/342

Url: https://access.redhat.com/security/cve/CVE-2023-50781

Url: https://nvd.nist.gov/vuln/detail/CVE-2023-50781

Url: https://gitlab.com/m2crypto/m2crypto

Url: https://bugzilla.redhat.com/show_bug.cgi?id=2254426

Url: https://www.mend.io/vulnerability-database/CVE-2023-50781

Severity Score

7.5

Weakness Type (CWE)

Observable Discrepancy

CWE-203

Observable Timing Discrepancy

CWE-208

CVSS v3.1

Base Score:	7.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	NONE
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2023-50781

Date: February 5, 2024

Severity Score

Related Resources (6)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?