cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-33855,https://securityvulnerability.io/vulnerability/CVE-2023-33855,Timing-Based Attack on IBM CCA Could Lead to Sensitive Information Disclosure,"IBM Common Cryptographic Architecture versions 7.0.0 through 7.5.36 exhibit a vulnerability that may allow remote attackers to execute timing-based attacks, leading to potential exposure of sensitive information. The issue arises from non-constant-time behavior during RSA operations, which could be exploited under specific conditions. This vulnerability emphasizes the need for heightened security measures and constant-time implementation practices to mitigate exposure to such timing attacks.",IBM,Common Cryptographic Architecture,3.7,LOW,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-03-26T14:04:37.274Z,0
CVE-2023-47150,https://securityvulnerability.io/vulnerability/CVE-2023-47150,IBM CCA Vulnerability Could Lead to Denial of Service,"IBM Common Cryptographic Architecture (CCA) versions 7.0.0 through 7.5.36 are susceptible to a denial of service vulnerability due to improper handling of data during specific AES operations. This flaw enables a remote user to exploit the system, potentially causing significant disruptions. Operators of affected versions should assess their systems and update to newer versions or implement recommended mitigations to ensure continued security and stability.",IBM,Common Cryptographic Architecture,7.5,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-03-26T14:01:26.765Z,0