VYPR
Medium severityGHSA Advisory· Published Nov 27, 2024· Updated Apr 15, 2026

CVE-2024-11862

CVE-2024-11862

Description

Non constant time cryptographic operation in Devolutions.XTS.NET 2024.11.19 and earlier allows an attacker to render half of the encryption key obsolete via a timing attacks

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
Devolutions.XTS.NETNuGet
< 2024.11.262024.11.26

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.