CVE-2020-25658
Description
It was found that python-rsa is vulnerable to Bleichenbacher timing attacks. An attacker can use this flaw via the RSA decryption API to decrypt parts of the cipher text encrypted with RSA.
Risk Information
Base Score
5.9
MODERATE
Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.233
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2020-25658 are fixed in Python-rsa 4.7 | Windows |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update ceph-ansible-4.0.70.3-1.el7cp.noarch.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update ceph-base-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update ceph-common-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update ceph-fuse-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update ceph-grafana-dashboards-14.2.22-110.el7cp.noarch.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update ceph-iscsi-3.4-5.el7cp.noarch.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update ceph-mds-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update ceph-radosgw-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update ceph-selinux-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update libcephfs-devel-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update libcephfs2-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update libntirpc-3.4-1.1.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update libntirpc-3.4-1.1.el8cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update libntirpc-debugsource-3.4-1.1.el8cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update librados-devel-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update librados2-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update libradospp-devel-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update libradosstriper1-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update librbd-devel-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update librbd1-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update librgw-devel-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update librgw2-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update libtcmu-1.5.2-5.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-3.5-1.2.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-3.5-1.2.el8cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-ceph-3.5-1.2.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-ceph-3.5-1.2.el8cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-debugsource-3.5-1.2.el8cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-proxy-3.5-1.2.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-proxy-3.5-1.2.el8cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-rados-grace-3.5-1.2.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-rados-grace-3.5-1.2.el8cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-rados-urls-3.5-1.2.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-rados-urls-3.5-1.2.el8cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-rgw-3.5-1.2.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-rgw-3.5-1.2.el8cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-selinux-3.5-1.2.el7cp.noarch.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-selinux-3.5-1.2.el8cp.noarch.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-vfs-3.5-1.2.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update nfs-ganesha-vfs-3.5-1.2.el8cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update python-ceph-argparse-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update python-cephfs-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update python-rados-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update python-rbd-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update python-rgw-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update rbd-mirror-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update rbd-nbd-14.2.22-110.el7cp.x86_64.rpm | Linux |
| (RHSA-2022:1716) Red Hat Ceph Storage 4.3 Security and Bug Fix update tcmu-runner-1.5.2-5.el7cp.x86_64.rpm | Linux |
| python-rsa Security Update (ALAS-2023-2150) python2-rsa-3.4.1-1.amzn2.0.4.noarch.rpm | Linux |
| python-rsa Security Update (ALAS-2023-2150) python3-rsa-3.4.1-1.amzn2.0.4.noarch.rpm | Linux |
| python-rsa Security Update (ALAS2-2023-2150) python2-rsa-3.4.1-1.amzn2.0.4.noarch.rpm | Linux |
| python-rsa Security Update (ALAS2-2023-2150) python3-rsa-3.4.1-1.amzn2.0.4.noarch.rpm | Linux |
| Vulnerabilities CVE-2020-25658 are fixed in Python-rsa for linux 4.7 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234