Vulnerability in m2crypto Allows Remote Decryption of TLS Captured Messages

Vulnerability in m2crypto Allows Remote Decryption of TLS Captured Messages

CVE-2023-50781 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.

Learn more about our Cis Benchmark Audit For Server Software.