Vulnerability in python-cryptography Package Allows Remote Decryption of TLS Captured Messages

Vulnerability in python-cryptography Package Allows Remote Decryption of TLS Captured Messages

CVE-2023-50782 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.

Learn more about our Cis Benchmark Audit For Server Software.