VYPR

CWE-514

Covert Channel

ClassIncomplete

Description

A covert channel is a path that can be used to transfer information in a way not intended by the system's designers.

Typically the system has not given authorization for the transmission and has no knowledge of its occurrence.

Hierarchy (View 1000)

Parents

Related attack patterns (CAPEC)

CAPEC-463

CVEs mapped to this weakness (1)

  • CVE-2026-42768LowJun 9, 2026
    risk 0.17cvss 3.7epss 0.00

    Issue summary: The CMS_decrypt and PKCS7_decrypt functions are vulnerable to Bleichenbacher-style attack when an attacker is able to provide the CMS or S/MIME messages and observe the error code and/or decryption output. Impact summary: The Bleichenbacher-style attack allows an…