CVE-2023-46809 - Node.js OpenSSL RSA Decryption Padding Vulnerability

2 months ago 23
ARTICLE AD BOX
CVE ID : CVE-2023-46809
Published : Sept. 7, 2024, 4:15 p.m. | 24 minutes ago
Description : Node.js versions which bundle an unpatched version of OpenSSL or run against a dynamically linked version of OpenSSL which are unpatched are vulnerable to the Marvin Attack - https://people.redhat.com/~hkario/marvin/, if PCKS #1 v1.5 padding is allowed when performing RSA descryption using a private key.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article