We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-46833

Programs/P73_SimplePythonEncryption.py has weak cryptographic key



Description

Programs/P73_SimplePythonEncryption.py illustrates a simple Python encryption example using the RSA Algorithm. In versions prior to commit 6ce60b1, an attacker may be able to decrypt the data using brute force attacks and because of this the whole application can be impacted. This issue has been patched in commit 6ce60b1. A workaround involves increasing the key size, for RSA or DSA this is at least 2048 bits, for ECC this is at least 256 bits.

Reserved 2025-04-30 | Published 2025-05-08 | Updated 2025-05-08 | Assigner GitHub_M


MEDIUM: 4.6CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U

Problem types

CWE-326: Inadequate Encryption Strength

Product status

< 6ce60b1
affected

References

github.com/...rrames/security/advisories/GHSA-5h26-2c6g-4ch4

github.com/...ommit/6ce60b1b2116a579a2e89de96d738a98f6ad4f27

cve.org (CVE-2025-46833)

nvd.nist.gov (CVE-2025-46833)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-46833

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.