High severity7.5NVD Advisory· Published Feb 5, 2024· Updated May 12, 2026
CVE-2023-50781
CVE-2023-50781
Description
A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
m2cryptoPyPI | <= 0.40.1 | — |
Affected products
5- cpe:2.3:a:m2crypto_project:m2crypto:-:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:update_infrastructure:4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
6- access.redhat.com/security/cve/CVE-2023-50781nvdThird Party AdvisoryWEB
- github.com/advisories/GHSA-944j-8ch6-rf6xghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2023-50781ghsaADVISORY
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingWEB
- gitlab.com/m2crypto/m2crypto/-/issues/342ghsaWEB
- cert-portal.siemens.com/productcert/html/ssa-265688.htmlnvd
News mentions
0No linked articles in our index yet.