{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/78072?format=json","vulnerability_id":"VCID-dhtg-q7jc-4bdn","summary":"kernel: Marvin vulnerability side-channel leakage in the RSA decryption operation","aliases":[{"alias":"CVE-2023-6240"}],"fixed_packages":[],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87570?format=json","purl":"pkg:rpm/redhat/kernel@4.18.0-553.5.1?arch=el8_10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1bd1-y6hg-jkht"},{"vulnerability":"VCID-3a5k-rqu5-k3dz"},{"vulnerability":"VCID-3vh9-c7m1-dubs"},{"vulnerability":"VCID-53gv-8q19-d3g7"},{"vulnerability":"VCID-57g6-pfmw-gqbs"},{"vulnerability":"VCID-5jdk-yfrh-7kay"},{"vulnerability":"VCID-66ar-kth1-nqgr"},{"vulnerability":"VCID-6gz1-3nxd-jyd8"},{"vulnerability":"VCID-6r7n-bx5b-tkdy"},{"vulnerability":"VCID-6suq-4yhh-57gt"},{"vulnerability":"VCID-7gfp-kd1q-w3eq"},{"vulnerability":"VCID-84c8-ab5r-vfbr"},{"vulnerability":"VCID-8gn5-y3mp-9qh2"},{"vulnerability":"VCID-9pn2-uujx-bkha"},{"vulnerability":"VCID-asgh-162t-dfh8"},{"vulnerability":"VCID-b2zq-g3yx-z7bm"},{"vulnerability":"VCID-b5qt-x64b-17b5"},{"vulnerability":"VCID-b5ve-8bn6-vbav"},{"vulnerability":"VCID-bu5t-6nhy-ayfn"},{"vulnerability":"VCID-cbvg-b6j8-qka3"},{"vulnerability":"VCID-d37b-59xm-wbct"},{"vulnerability":"VCID-dd8e-mqbz-zydu"},{"vulnerability":"VCID-dhtg-q7jc-4bdn"},{"vulnerability":"VCID-dumj-hn6g-mfcd"},{"vulnerability":"VCID-edhz-upaz-67hk"},{"vulnerability":"VCID-ef8x-nm9h-4ub2"},{"vulnerability":"VCID-g5xk-qhrt-yygt"},{"vulnerability":"VCID-h2r4-f7z1-pycq"},{"vulnerability":"VCID-hctp-1qet-vqdp"},{"vulnerability":"VCID-hgrf-kx83-z7d2"},{"vulnerability":"VCID-japv-yaqc-rked"},{"vulnerability":"VCID-jnup-c1qn-y7cd"},{"vulnerability":"VCID-jxrt-7n71-jfaj"},{"vulnerability":"VCID-k8jt-3gvz-77ge"},{"vulnerability":"VCID-mp3y-t88c-nug9"},{"vulnerability":"VCID-n3q5-b4nv-hkc6"},{"vulnerability":"VCID-np8e-zufu-33aw"},{"vulnerability":"VCID-npv1-zh63-9bfm"},{"vulnerability":"VCID-p3my-xcuy-qfh8"},{"vulnerability":"VCID-pyq2-5rgm-8kc3"},{"vulnerability":"VCID-qxsc-vnnw-ukdx"},{"vulnerability":"VCID-rafg-db4h-b3bn"},{"vulnerability":"VCID-rygq-nw8t-tkd4"},{"vulnerability":"VCID-s5cn-vx9f-ykar"},{"vulnerability":"VCID-sn1p-duct-7fcf"},{"vulnerability":"VCID-ssut-45u7-8qb3"},{"vulnerability":"VCID-t8dz-y9c8-bbdf"},{"vulnerability":"VCID-u1wk-h9yz-duh6"},{"vulnerability":"VCID-u2cu-p4a3-yke8"},{"vulnerability":"VCID-ueaz-eysk-abhx"},{"vulnerability":"VCID-uf5w-fwbf-jqe8"},{"vulnerability":"VCID-uhzc-svve-4qb1"},{"vulnerability":"VCID-unts-rgnw-8bdy"},{"vulnerability":"VCID-upvd-vvq1-w3du"},{"vulnerability":"VCID-vmqt-cfda-4bbe"},{"vulnerability":"VCID-vvx8-gvt8-quax"},{"vulnerability":"VCID-wwuc-q42j-23gm"},{"vulnerability":"VCID-x5xc-bh9e-ybhy"},{"vulnerability":"VCID-yk3n-6dve-wqft"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@4.18.0-553.5.1%3Farch=el8_10"},{"url":"http://public2.vulnerablecode.io/api/packages/87616?format=json","purl":"pkg:rpm/redhat/kernel@5.14.0-70.101.1?arch=el9_0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1p3k-f3ck-83bg"},{"vulnerability":"VCID-7ds1-kkxr-b7gx"},{"vulnerability":"VCID-95xe-xtqt-r3b8"},{"vulnerability":"VCID-ag6x-k7xd-tueu"},{"vulnerability":"VCID-ba6k-mvxj-8udm"},{"vulnerability":"VCID-dhtg-q7jc-4bdn"},{"vulnerability":"VCID-hucp-gu2u-97e1"},{"vulnerability":"VCID-ktvv-15kj-3fg7"},{"vulnerability":"VCID-nw16-hvw6-k7dn"},{"vulnerability":"VCID-p7n2-tzd3-buhk"},{"vulnerability":"VCID-qkq7-ws9x-43f7"},{"vulnerability":"VCID-rbrm-7x37-3ugv"},{"vulnerability":"VCID-vtu4-ahaf-yyeq"},{"vulnerability":"VCID-yemh-xwuf-myaq"},{"vulnerability":"VCID-ytxq-fc9h-vyfu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@5.14.0-70.101.1%3Farch=el9_0"},{"url":"http://public2.vulnerablecode.io/api/packages/93251?format=json","purl":"pkg:rpm/redhat/kernel@5.14.0-284.62.1?arch=el9_2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3r27-df68-nkh6"},{"vulnerability":"VCID-6we8-qvfc-57e3"},{"vulnerability":"VCID-95xe-xtqt-r3b8"},{"vulnerability":"VCID-dhtg-q7jc-4bdn"},{"vulnerability":"VCID-ww17-8hne-xkhj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@5.14.0-284.62.1%3Farch=el9_2"},{"url":"http://public2.vulnerablecode.io/api/packages/93557?format=json","purl":"pkg:rpm/redhat/kernel@5.14.0-427.16.1?arch=el9_4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ba6k-mvxj-8udm"},{"vulnerability":"VCID-dhtg-q7jc-4bdn"},{"vulnerability":"VCID-hucp-gu2u-97e1"},{"vulnerability":"VCID-z5c6-dfvg-dyhm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@5.14.0-427.16.1%3Farch=el9_4"},{"url":"http://public2.vulnerablecode.io/api/packages/93417?format=json","purl":"pkg:rpm/redhat/kernel-rt@4.18.0-553.5.1.rt7.346?arch=el8_10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1bd1-y6hg-jkht"},{"vulnerability":"VCID-3a5k-rqu5-k3dz"},{"vulnerability":"VCID-3vh9-c7m1-dubs"},{"vulnerability":"VCID-53gv-8q19-d3g7"},{"vulnerability":"VCID-57g6-pfmw-gqbs"},{"vulnerability":"VCID-5jdk-yfrh-7kay"},{"vulnerability":"VCID-66ar-kth1-nqgr"},{"vulnerability":"VCID-6gz1-3nxd-jyd8"},{"vulnerability":"VCID-6r7n-bx5b-tkdy"},{"vulnerability":"VCID-6suq-4yhh-57gt"},{"vulnerability":"VCID-7gfp-kd1q-w3eq"},{"vulnerability":"VCID-84c8-ab5r-vfbr"},{"vulnerability":"VCID-9pn2-uujx-bkha"},{"vulnerability":"VCID-asgh-162t-dfh8"},{"vulnerability":"VCID-b2zq-g3yx-z7bm"},{"vulnerability":"VCID-b5qt-x64b-17b5"},{"vulnerability":"VCID-b5ve-8bn6-vbav"},{"vulnerability":"VCID-bu5t-6nhy-ayfn"},{"vulnerability":"VCID-cbvg-b6j8-qka3"},{"vulnerability":"VCID-d37b-59xm-wbct"},{"vulnerability":"VCID-dd8e-mqbz-zydu"},{"vulnerability":"VCID-dhtg-q7jc-4bdn"},{"vulnerability":"VCID-edhz-upaz-67hk"},{"vulnerability":"VCID-ef8x-nm9h-4ub2"},{"vulnerability":"VCID-g5xk-qhrt-yygt"},{"vulnerability":"VCID-h2r4-f7z1-pycq"},{"vulnerability":"VCID-hgrf-kx83-z7d2"},{"vulnerability":"VCID-jnup-c1qn-y7cd"},{"vulnerability":"VCID-jxrt-7n71-jfaj"},{"vulnerability":"VCID-k8jt-3gvz-77ge"},{"vulnerability":"VCID-mp3y-t88c-nug9"},{"vulnerability":"VCID-n3q5-b4nv-hkc6"},{"vulnerability":"VCID-np8e-zufu-33aw"},{"vulnerability":"VCID-npv1-zh63-9bfm"},{"vulnerability":"VCID-pyq2-5rgm-8kc3"},{"vulnerability":"VCID-qxsc-vnnw-ukdx"},{"vulnerability":"VCID-rafg-db4h-b3bn"},{"vulnerability":"VCID-s5cn-vx9f-ykar"},{"vulnerability":"VCID-sn1p-duct-7fcf"},{"vulnerability":"VCID-ssut-45u7-8qb3"},{"vulnerability":"VCID-t8dz-y9c8-bbdf"},{"vulnerability":"VCID-u1wk-h9yz-duh6"},{"vulnerability":"VCID-u2cu-p4a3-yke8"},{"vulnerability":"VCID-ueaz-eysk-abhx"},{"vulnerability":"VCID-uf5w-fwbf-jqe8"},{"vulnerability":"VCID-uhzc-svve-4qb1"},{"vulnerability":"VCID-unts-rgnw-8bdy"},{"vulnerability":"VCID-upvd-vvq1-w3du"},{"vulnerability":"VCID-vmqt-cfda-4bbe"},{"vulnerability":"VCID-vvx8-gvt8-quax"},{"vulnerability":"VCID-wwuc-q42j-23gm"},{"vulnerability":"VCID-x5xc-bh9e-ybhy"},{"vulnerability":"VCID-yk3n-6dve-wqft"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel-rt@4.18.0-553.5.1.rt7.346%3Farch=el8_10"},{"url":"http://public2.vulnerablecode.io/api/packages/93766?format=json","purl":"pkg:rpm/redhat/kernel-rt@5.14.0-70.101.1.rt21.173?arch=el9_0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1p3k-f3ck-83bg"},{"vulnerability":"VCID-95xe-xtqt-r3b8"},{"vulnerability":"VCID-dhtg-q7jc-4bdn"},{"vulnerability":"VCID-p7n2-tzd3-buhk"},{"vulnerability":"VCID-qkq7-ws9x-43f7"},{"vulnerability":"VCID-rbrm-7x37-3ugv"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel-rt@5.14.0-70.101.1.rt21.173%3Farch=el9_0"},{"url":"http://public2.vulnerablecode.io/api/packages/94082?format=json","purl":"pkg:rpm/redhat/kernel-rt@5.14.0-284.62.1.rt14.347?arch=el9_2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3r27-df68-nkh6"},{"vulnerability":"VCID-6we8-qvfc-57e3"},{"vulnerability":"VCID-95xe-xtqt-r3b8"},{"vulnerability":"VCID-dhtg-q7jc-4bdn"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel-rt@5.14.0-284.62.1.rt14.347%3Farch=el9_2"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6240.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6240.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-6240","reference_id":"","reference_type":"","scores":[{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.15767","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.15765","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20525","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.2048","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20557","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20615","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20635","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20593","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.2054","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20523","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20398","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20415","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.2097","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.20709","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.20783","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21171","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21226","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.2087","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.20806","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-6240"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6240","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6240"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2250843","reference_id":"2250843","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2250843"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::nfv","reference_id":"cpe:/a:redhat:enterprise_linux:8::nfv","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::nfv"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::realtime","reference_id":"cpe:/a:redhat:enterprise_linux:8::realtime","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::realtime"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::nfv","reference_id":"cpe:/a:redhat:enterprise_linux:9::nfv","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::nfv"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::realtime","reference_id":"cpe:/a:redhat:enterprise_linux:9::realtime","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::realtime"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.0::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::nfv","reference_id":"cpe:/a:redhat:rhel_eus:9.0::nfv","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::nfv"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::realtime","reference_id":"cpe:/a:redhat:rhel_eus:9.0::realtime","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::realtime"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.2::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::nfv","reference_id":"cpe:/a:redhat:rhel_eus:9.2::nfv","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::nfv"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::realtime","reference_id":"cpe:/a:redhat:rhel_eus:9.2::realtime","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::realtime"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos","reference_id":"cpe:/o:redhat:enterprise_linux:8::baseos","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos","reference_id":"cpe:/o:redhat:enterprise_linux:9::baseos","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.0::baseos","reference_id":"cpe:/o:redhat:rhel_eus:9.0::baseos","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.0::baseos"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.2::baseos","reference_id":"cpe:/o:redhat:rhel_eus:9.2::baseos","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.2::baseos"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2023-6240","reference_id":"CVE-2023-6240","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2023-6240"},{"reference_url":"https://securitypitfalls.wordpress.com/2023/10/16/experiment-with-side-channel-attacks-yourself/","reference_id":"experiment-with-side-channel-attacks-yourself","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/"}],"url":"https://securitypitfalls.wordpress.com/2023/10/16/experiment-with-side-channel-attacks-yourself/"},{"reference_url":"https://people.redhat.com/~hkario/marvin/","reference_id":"marvin","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/"}],"url":"https://people.redhat.com/~hkario/marvin/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1881","reference_id":"RHSA-2024:1881","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:1881"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1882","reference_id":"RHSA-2024:1882","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:1882"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2758","reference_id":"RHSA-2024:2758","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3414","reference_id":"RHSA-2024:3414","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:3414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3421","reference_id":"RHSA-2024:3421","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:3421"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3618","reference_id":"RHSA-2024:3618","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:3618"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3627","reference_id":"RHSA-2024:3627","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:11:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:3627"}],"weaknesses":[{"cwe_id":203,"name":"Observable Discrepancy","description":"The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor, which exposes security-relevant information about the state of the product, such as whether a particular operation was successful or not."}],"exploits":[],"severity_range_score":"6.5 - 6.5","exploitability":"0.5","weighted_severity":"5.9","risk_score":3.0,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dhtg-q7jc-4bdn"}