A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.
Fixes

Solution

No solution given by the vendor.


Workaround

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

History

Sun, 13 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00306}

epss

{'score': 0.00454}


Mon, 30 Sep 2024 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2025-08-30T07:43:06.598Z

Reserved: 2023-12-13T20:44:02.023Z

Link: CVE-2023-50781

cve-icon Vulnrichment

Updated: 2024-08-02T22:23:43.606Z

cve-icon NVD

Status : Modified

Published: 2024-02-05T21:15:10.970

Modified: 2024-11-21T08:37:18.167

Link: CVE-2023-50781

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-12-13T00:00:00Z

Links: CVE-2023-50781 - Bugzilla

cve-icon OpenCVE Enrichment

No data.