M2crypto Project

m2crypto_project

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

M2crypto

m2crypto

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-50781 2M2crypto Project Redhat 3Enterprise Linux M2cryptoUpdate Infrastructure May 12, 2026 Feb 5, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.
CVE-2020-25657 3Fedoraproject M2crypto ProjectRedhat 4Enterprise Linux FedoraM2crypto+1 more Nov 21, 2024 Jan 12, 2021 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 A flaw was found in all released versions of m2crypto, where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat fro...Show more A flaw was found in all released versions of m2crypto, where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat from this vulnerability is to confidentiality.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2023-50781

2M2crypto Project

Redhat

3Enterprise Linux

M2cryptoUpdate Infrastructure

May 12, 2026

Feb 5, 2024

N/A· v4

7.5 HIGH· v3

N/A· v2

A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.

CVE-2020-25657

3Fedoraproject

M2crypto ProjectRedhat

4Enterprise Linux

FedoraM2crypto+1 more

Nov 21, 2024

Jan 12, 2021

N/A· v4

5.9 MEDIUM· v3

4.3 MEDIUM· v2

A flaw was found in all released versions of m2crypto, where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat fro...Show more