Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-dhtg-q7jc-4bdn

Summary kernel: Marvin vulnerability side-channel leakage in the RSA decryption operation

Aliases

alias	CVE-2023-6240

Fixed_packages

Affected_packages

url pkg:rpm/redhat/kernel@4.18.0-553.5.1?arch=el8_10

purl pkg:rpm/redhat/kernel@4.18.0-553.5.1?arch=el8_10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1bd1-y6hg-jkht

vulnerability	VCID-3a5k-rqu5-k3dz

vulnerability	VCID-3vh9-c7m1-dubs

vulnerability	VCID-53gv-8q19-d3g7

vulnerability	VCID-57g6-pfmw-gqbs

vulnerability	VCID-5jdk-yfrh-7kay

vulnerability	VCID-66ar-kth1-nqgr

vulnerability	VCID-6gz1-3nxd-jyd8

vulnerability	VCID-6r7n-bx5b-tkdy

vulnerability	VCID-6suq-4yhh-57gt

vulnerability	VCID-7gfp-kd1q-w3eq

vulnerability	VCID-84c8-ab5r-vfbr

vulnerability	VCID-8gn5-y3mp-9qh2

vulnerability	VCID-9pn2-uujx-bkha

vulnerability	VCID-asgh-162t-dfh8

vulnerability	VCID-b2zq-g3yx-z7bm

vulnerability	VCID-b5qt-x64b-17b5

vulnerability	VCID-b5ve-8bn6-vbav

vulnerability	VCID-bu5t-6nhy-ayfn

vulnerability	VCID-cbvg-b6j8-qka3

vulnerability	VCID-d37b-59xm-wbct

vulnerability	VCID-dd8e-mqbz-zydu

vulnerability	VCID-dhtg-q7jc-4bdn

vulnerability	VCID-dumj-hn6g-mfcd

vulnerability	VCID-edhz-upaz-67hk

vulnerability	VCID-ef8x-nm9h-4ub2

vulnerability	VCID-g5xk-qhrt-yygt

vulnerability	VCID-h2r4-f7z1-pycq

vulnerability	VCID-hctp-1qet-vqdp

vulnerability	VCID-hgrf-kx83-z7d2

vulnerability	VCID-japv-yaqc-rked

vulnerability	VCID-jnup-c1qn-y7cd

vulnerability	VCID-jxrt-7n71-jfaj

vulnerability	VCID-k8jt-3gvz-77ge

vulnerability	VCID-mp3y-t88c-nug9

vulnerability	VCID-n3q5-b4nv-hkc6

vulnerability	VCID-np8e-zufu-33aw

vulnerability	VCID-npv1-zh63-9bfm

vulnerability	VCID-p3my-xcuy-qfh8

vulnerability	VCID-pyq2-5rgm-8kc3

vulnerability	VCID-qxsc-vnnw-ukdx

vulnerability	VCID-rafg-db4h-b3bn

vulnerability	VCID-rygq-nw8t-tkd4

vulnerability	VCID-s5cn-vx9f-ykar

vulnerability	VCID-sn1p-duct-7fcf

vulnerability	VCID-ssut-45u7-8qb3

vulnerability	VCID-t8dz-y9c8-bbdf

vulnerability	VCID-u1wk-h9yz-duh6

vulnerability	VCID-u2cu-p4a3-yke8

vulnerability	VCID-ueaz-eysk-abhx

vulnerability	VCID-uf5w-fwbf-jqe8

vulnerability	VCID-uhzc-svve-4qb1

vulnerability	VCID-unts-rgnw-8bdy

vulnerability	VCID-upvd-vvq1-w3du

vulnerability	VCID-vmqt-cfda-4bbe

vulnerability	VCID-vvx8-gvt8-quax

vulnerability	VCID-wwuc-q42j-23gm

vulnerability	VCID-x5xc-bh9e-ybhy

vulnerability	VCID-yk3n-6dve-wqft

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@4.18.0-553.5.1%3Farch=el8_10

url pkg:rpm/redhat/kernel@5.14.0-70.101.1?arch=el9_0

purl pkg:rpm/redhat/kernel@5.14.0-70.101.1?arch=el9_0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1p3k-f3ck-83bg

vulnerability	VCID-7ds1-kkxr-b7gx

vulnerability	VCID-95xe-xtqt-r3b8

vulnerability	VCID-ag6x-k7xd-tueu

vulnerability	VCID-ba6k-mvxj-8udm

vulnerability	VCID-dhtg-q7jc-4bdn

vulnerability	VCID-hucp-gu2u-97e1

vulnerability	VCID-ktvv-15kj-3fg7

vulnerability	VCID-nw16-hvw6-k7dn

vulnerability	VCID-p7n2-tzd3-buhk

vulnerability	VCID-qkq7-ws9x-43f7

vulnerability	VCID-rbrm-7x37-3ugv

vulnerability	VCID-vtu4-ahaf-yyeq

vulnerability	VCID-yemh-xwuf-myaq

vulnerability	VCID-ytxq-fc9h-vyfu

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@5.14.0-70.101.1%3Farch=el9_0

url pkg:rpm/redhat/kernel@5.14.0-284.62.1?arch=el9_2

purl pkg:rpm/redhat/kernel@5.14.0-284.62.1?arch=el9_2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3r27-df68-nkh6

vulnerability	VCID-6we8-qvfc-57e3

vulnerability	VCID-95xe-xtqt-r3b8

vulnerability	VCID-dhtg-q7jc-4bdn

vulnerability	VCID-ww17-8hne-xkhj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@5.14.0-284.62.1%3Farch=el9_2

url pkg:rpm/redhat/kernel@5.14.0-427.16.1?arch=el9_4

purl pkg:rpm/redhat/kernel@5.14.0-427.16.1?arch=el9_4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ba6k-mvxj-8udm

vulnerability	VCID-dhtg-q7jc-4bdn

vulnerability	VCID-hucp-gu2u-97e1

vulnerability	VCID-z5c6-dfvg-dyhm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@5.14.0-427.16.1%3Farch=el9_4

url pkg:rpm/redhat/kernel-rt@4.18.0-553.5.1.rt7.346?arch=el8_10

purl pkg:rpm/redhat/kernel-rt@4.18.0-553.5.1.rt7.346?arch=el8_10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1bd1-y6hg-jkht

vulnerability	VCID-3a5k-rqu5-k3dz

vulnerability	VCID-3vh9-c7m1-dubs

vulnerability	VCID-53gv-8q19-d3g7

vulnerability	VCID-57g6-pfmw-gqbs

vulnerability	VCID-5jdk-yfrh-7kay

vulnerability	VCID-66ar-kth1-nqgr

vulnerability	VCID-6gz1-3nxd-jyd8

vulnerability	VCID-6r7n-bx5b-tkdy

vulnerability	VCID-6suq-4yhh-57gt

vulnerability	VCID-7gfp-kd1q-w3eq

vulnerability	VCID-84c8-ab5r-vfbr

vulnerability	VCID-9pn2-uujx-bkha

vulnerability	VCID-asgh-162t-dfh8

vulnerability	VCID-b2zq-g3yx-z7bm

vulnerability	VCID-b5qt-x64b-17b5

vulnerability	VCID-b5ve-8bn6-vbav

vulnerability	VCID-bu5t-6nhy-ayfn

vulnerability	VCID-cbvg-b6j8-qka3

vulnerability	VCID-d37b-59xm-wbct

vulnerability	VCID-dd8e-mqbz-zydu

vulnerability	VCID-dhtg-q7jc-4bdn

vulnerability	VCID-edhz-upaz-67hk

vulnerability	VCID-ef8x-nm9h-4ub2

vulnerability	VCID-g5xk-qhrt-yygt

vulnerability	VCID-h2r4-f7z1-pycq

vulnerability	VCID-hgrf-kx83-z7d2

vulnerability	VCID-jnup-c1qn-y7cd

vulnerability	VCID-jxrt-7n71-jfaj

vulnerability	VCID-k8jt-3gvz-77ge

vulnerability	VCID-mp3y-t88c-nug9

vulnerability	VCID-n3q5-b4nv-hkc6

vulnerability	VCID-np8e-zufu-33aw

vulnerability	VCID-npv1-zh63-9bfm

vulnerability	VCID-pyq2-5rgm-8kc3

vulnerability	VCID-qxsc-vnnw-ukdx

vulnerability	VCID-rafg-db4h-b3bn

vulnerability	VCID-s5cn-vx9f-ykar

vulnerability	VCID-sn1p-duct-7fcf

vulnerability	VCID-ssut-45u7-8qb3

vulnerability	VCID-t8dz-y9c8-bbdf

vulnerability	VCID-u1wk-h9yz-duh6

vulnerability	VCID-u2cu-p4a3-yke8

vulnerability	VCID-ueaz-eysk-abhx

vulnerability	VCID-uf5w-fwbf-jqe8

vulnerability	VCID-uhzc-svve-4qb1

vulnerability	VCID-unts-rgnw-8bdy

vulnerability	VCID-upvd-vvq1-w3du

vulnerability	VCID-vmqt-cfda-4bbe

vulnerability	VCID-vvx8-gvt8-quax

vulnerability	VCID-wwuc-q42j-23gm

vulnerability	VCID-x5xc-bh9e-ybhy

vulnerability	VCID-yk3n-6dve-wqft

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel-rt@4.18.0-553.5.1.rt7.346%3Farch=el8_10

url pkg:rpm/redhat/kernel-rt@5.14.0-70.101.1.rt21.173?arch=el9_0

purl pkg:rpm/redhat/kernel-rt@5.14.0-70.101.1.rt21.173?arch=el9_0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1p3k-f3ck-83bg

vulnerability	VCID-95xe-xtqt-r3b8

vulnerability	VCID-dhtg-q7jc-4bdn

vulnerability	VCID-p7n2-tzd3-buhk

vulnerability	VCID-qkq7-ws9x-43f7

vulnerability	VCID-rbrm-7x37-3ugv

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel-rt@5.14.0-70.101.1.rt21.173%3Farch=el9_0

url pkg:rpm/redhat/kernel-rt@5.14.0-284.62.1.rt14.347?arch=el9_2

purl pkg:rpm/redhat/kernel-rt@5.14.0-284.62.1.rt14.347?arch=el9_2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3r27-df68-nkh6

vulnerability	VCID-6we8-qvfc-57e3

vulnerability	VCID-95xe-xtqt-r3b8

vulnerability	VCID-dhtg-q7jc-4bdn

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel-rt@5.14.0-284.62.1.rt14.347%3Farch=el9_2

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6240.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6240.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-6240

reference_id

reference_type

scores

value	0.00051
scoring_system	epss
scoring_elements	0.15767
published_at	2026-04-24T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15765
published_at	2026-04-26T12:55:00Z

value	0.00066
scoring_system	epss
scoring_elements	0.20557
published_at	2026-04-08T12:55:00Z

value	0.00066
scoring_system	epss
scoring_elements	0.2048
published_at	2026-04-07T12:55:00Z

value	0.00066
scoring_system	epss
scoring_elements	0.20615
published_at	2026-04-09T12:55:00Z

value	0.00066
scoring_system	epss
scoring_elements	0.20635
published_at	2026-04-11T12:55:00Z

value	0.00066
scoring_system	epss
scoring_elements	0.20593
published_at	2026-04-12T12:55:00Z

value	0.00066
scoring_system	epss
scoring_elements	0.2054
published_at	2026-04-13T12:55:00Z

value	0.00066
scoring_system	epss
scoring_elements	0.20525
published_at	2026-04-16T12:55:00Z

value	0.00066
scoring_system	epss
scoring_elements	0.20523
published_at	2026-04-18T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.21226
published_at	2026-04-04T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.2097
published_at	2026-04-21T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.21171
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-6240

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6240
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6240

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=2250843

reference_id

2250843

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=2250843

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb
reference_id	cpe:/a:redhat:enterprise_linux:8::crb
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::nfv
reference_id	cpe:/a:redhat:enterprise_linux:8::nfv
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::nfv

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::realtime
reference_id	cpe:/a:redhat:enterprise_linux:8::realtime
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::realtime

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
reference_id	cpe:/a:redhat:enterprise_linux:9::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb
reference_id	cpe:/a:redhat:enterprise_linux:9::crb
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::nfv
reference_id	cpe:/a:redhat:enterprise_linux:9::nfv
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::nfv

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::realtime
reference_id	cpe:/a:redhat:enterprise_linux:9::realtime
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::realtime

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream
reference_id	cpe:/a:redhat:rhel_eus:9.0::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::crb
reference_id	cpe:/a:redhat:rhel_eus:9.0::crb
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::crb

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::nfv
reference_id	cpe:/a:redhat:rhel_eus:9.0::nfv
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::nfv

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::realtime
reference_id	cpe:/a:redhat:rhel_eus:9.0::realtime
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::realtime

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream
reference_id	cpe:/a:redhat:rhel_eus:9.2::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::crb
reference_id	cpe:/a:redhat:rhel_eus:9.2::crb
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::crb

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::nfv
reference_id	cpe:/a:redhat:rhel_eus:9.2::nfv
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::nfv

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::realtime
reference_id	cpe:/a:redhat:rhel_eus:9.2::realtime
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::realtime

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id	cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id	cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos
reference_id	cpe:/o:redhat:enterprise_linux:8::baseos
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
reference_id	cpe:/o:redhat:enterprise_linux:9
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos
reference_id	cpe:/o:redhat:enterprise_linux:9::baseos
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.0::baseos
reference_id	cpe:/o:redhat:rhel_eus:9.0::baseos
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.0::baseos

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.2::baseos
reference_id	cpe:/o:redhat:rhel_eus:9.2::baseos
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.2::baseos

reference_url

https://access.redhat.com/security/cve/CVE-2023-6240

reference_id

CVE-2023-6240

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/

url

https://access.redhat.com/security/cve/CVE-2023-6240

reference_url

https://securitypitfalls.wordpress.com/2023/10/16/experiment-with-side-channel-attacks-yourself/

reference_id

experiment-with-side-channel-attacks-yourself

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/

url

https://securitypitfalls.wordpress.com/2023/10/16/experiment-with-side-channel-attacks-yourself/

reference_url

https://people.redhat.com/~hkario/marvin/

reference_id

marvin

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/

url

https://people.redhat.com/~hkario/marvin/

reference_url

https://access.redhat.com/errata/RHSA-2024:1881

reference_id

RHSA-2024:1881

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/

url

https://access.redhat.com/errata/RHSA-2024:1881

reference_url

https://access.redhat.com/errata/RHSA-2024:1882

reference_id

RHSA-2024:1882

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/

url

https://access.redhat.com/errata/RHSA-2024:1882

reference_url

https://access.redhat.com/errata/RHSA-2024:2758

reference_id

RHSA-2024:2758

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/

url

https://access.redhat.com/errata/RHSA-2024:2758

reference_url

https://access.redhat.com/errata/RHSA-2024:3414

reference_id

RHSA-2024:3414

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/

url

https://access.redhat.com/errata/RHSA-2024:3414

reference_url

https://access.redhat.com/errata/RHSA-2024:3421

reference_id

RHSA-2024:3421

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/

url

https://access.redhat.com/errata/RHSA-2024:3421

reference_url

https://access.redhat.com/errata/RHSA-2024:3618

reference_id

RHSA-2024:3618

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/

url

https://access.redhat.com/errata/RHSA-2024:3618

reference_url

https://access.redhat.com/errata/RHSA-2024:3627

reference_id

RHSA-2024:3627

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/

url

https://access.redhat.com/errata/RHSA-2024:3627

Weaknesses

cwe_id	203
name	Observable Discrepancy
description	The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor, which exposes security-relevant information about the state of the product, such as whether a particular operation was successful or not.

Exploits

Severity_range_score 6.5 - 6.5

Exploitability 0.5

Weighted_severity 5.9

Risk_score 3.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dhtg-q7jc-4bdn

Vulnerability Instance