Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
IBMHttpServer Observable Discrepancy Vulnerability - CVE-2023-32342 - Vulnerability Database
IBMHttpServer

IBMHttpServer Observable Discrepancy Vulnerability - CVE-2023-32342

High
Reference: CVE-2023-32342
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-32342
Title: IBMHttpServer Observable Discrepancy Vulnerability
Overview:

IBM GSKit could allow a remote attacker to obtain sensitive information caused by a timing-based side channel in the RSA Decryption implementation. By sending an overly large number of trial messages for decryption an attacker could exploit this vulnerability to obtain sensitive information. IBM X-Force ID: 255828.