CVE-2021-24115

CVE-2021-24115

EPSS 2.0%

In Botan before 2.17.3, constant-time computations are not used for certain decoding and encoding operations (base32, base58, base64, and hex).

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://botan.randombit.net/news.html https://github.com/randombit/botan/compare/2.17.2...2.17.3 https://github.com/randombit/botan/pull/2549