python-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks in the RSA decryption API, via timed processing of valid PKCS#1 v1.5 ciphertext.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-385,NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| python-cryptography_project | python-cryptography | 3.2 |
| cryptography.io | cryptography | 3.2 |
| oracle | communications_cloud_native_core_network_function_cloud_native_environment | 1.10.0 |