CVEs classified under CWE-208, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2023-41313 — CVSS 9.8 (critical): The authentication method in Apache Doris versions before 2.0.0 was vulnerable to timing attacks. Users are recommended to upgrade to…
CVE-2024-42512 — CVSS 8.6 (high): Vulnerability in the OPC UA .NET Standard Stack before 1.5.374.158 allows an unauthorized attacker to bypass application authentication…
CVE-2025-53940: Quiet is an alternative to team chat apps like Slack, Discord, and Element that does not require trusting a central server or running one's…
CVE-2026-47784 — CVSS 8.1 (high): In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by…
CVE-2026-47783 — CVSS 8.1 (high): In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon…
CVE-2026-42602 — CVSS 8.1 (high): azureauthextension is the Azure Authenticator Extension. From 0.124.0 to 0.150.0, a server-side authentication bypass in azureauthextension…
CVE-2026-47373 — CVSS 7.5 (high): Crypt::SaltedHash versions through 0.09 for Perl is susceptible to timing attacks. These versions use Perl's built-in eq comparison…
CVE-2026-40972 — CVSS 7.5 (high): An attacker on the same network as the remote application may be able to utilize a timing attack to discover information about the remote…
CVE-2026-5086 — CVSS 7.5 (high): Crypt::SecretBuffer versions before 0.019 for Perl is suseceptible to timing attacks. For example, if Crypt::SecretBuffer was used to store…
CVE-2025-70949 — CVSS 7.5 (high): An observable timing discrepancy in @perfood/couch-auth v0.26.0 allows attackers to access sensitive information via a timing side-channel.
CVE-2021-42016 — CVSS 7.5 (high): A vulnerability has been identified in RUGGEDCOM i800, RUGGEDCOM i801, RUGGEDCOM i802, RUGGEDCOM i803, RUGGEDCOM M2100, RUGGEDCOM M2100F…
CVE-2025-48630 — CVSS 7.4 (high): In drawLayersInternal of SkiaRenderEngine.cpp, there is a possible way to access the GPU cache due to side channel information disclosure…
CVE-2025-68621 — CVSS 7.4 (high): Trilium Notes is an open-source, cross-platform hierarchical note taking application with focus on building large personal knowledge bases…
CVE-2026-44368: PyQuorum is a cryptographic library for secret sharing and key management. Prior to 0.2.1, the mul_mod function implements multiplication…
CVE-2025-48995: SignXML is an implementation of the W3C XML Signature standard in Python. When verifying signatures with X509 certificate validation turned…
CVE-2025-59432: SCRAM (Salted Challenge Response Authentication Mechanism) is part of the family of Simple Authentication and Security Layer (SASL, RFC…
CVE-2026-6291 — CVSS 6.5 (medium): Bleichenbacher padding oracle in PKCS#7 KTRI decryption. When decrypting PKCS#7 EnvelopedData using RSA PKCS#1 v1.5 key transport, wolfSSL…
CVE-2024-22340 — CVSS 6.5 (medium): IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow a remote attacker to obtain sensitive information during the…
CVE-2024-23953 — CVSS 6.5 (medium): Use of Arrays.equals() in LlapSignerImpl in Apache Hive to compare message signatures allows attacker to forge a valid signature for an…
CVE-2024-42368 — CVSS 6.5 (medium): OpenTelemetry, also known as OTel, is a vendor-neutral open source Observability framework for instrumenting, generating, collecting, and…
CVE-2026-47380: NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, sign-in response timing differed between known and unknown…
CVE-2021-34337 — CVSS 6.3 (medium): An issue was discovered in Mailman Core before 3.3.5. An attacker with access to the REST API could use timing attacks to determine the…
CVE-2025-54764 — CVSS 6.2 (medium): Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or…
CVE-2025-20067 — CVSS 6.0 (medium): Observable timing discrepancy in firmware for some Intel(R) CSME and Intel(R) SPS may allow a privileged user to potentially enable…
CVE-2026-54411 — CVSS 5.9 (medium): Linux-PAM through 1.7.2 contains an observable timing discrepancy (CWE-208) in the pam_userdb module's plaintext-password comparison path…
CVE-2017-20240 — CVSS 5.9 (medium): Crypt::PBKDF2 versions before 0.261630 for Perl are vulnerable to timing attacks. These versions use Perl's built-in eq comparison…
CVE-2026-44061 — CVSS 5.9 (medium): Netatalk 1.5.0 through 4.4.2 uses DES-ECB for authentication with a timing side channel, which allows a remote attacker to recover…
CVE-2026-21713 — CVSS 5.9 (medium): A flaw in Node.js HMAC verification uses a non-constant-time comparison when validating user-provided signatures, potentially leaking…
CVE-2026-33129 — CVSS 5.9 (medium): H3 is a minimal H(TTP) framework. Versions 2.0.1-beta.0 through 2.0.0-rc.8 contain a Timing Side-Channel vulnerability in the…
CVE-2026-32935 — CVSS 5.9 (medium): phpseclib is a PHP secure communications library. Projects using versions 0.1.1 through 1.0.26, 2.0.0 through 2.0.51, and 3.0.0 through…
CVE-2026-28464 — CVSS 5.9 (medium): OpenClaw versions prior to 2026.2.12 use non-constant-time string comparison for hook token validation, allowing attackers to infer tokens…
CVE-2026-3337 — CVSS 5.9 (medium): Observable timing discrepancy in AES-CCM decryption in AWS-LC allows an unauthenticated user to potentially determine authentication tag…
CVE-2026-23892 — CVSS 5.9 (medium): OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versions up to and including 1.11.5 are affected by a…
CVE-2025-59058 — CVSS 5.9 (medium): httpsig-rs is a Rust implementation of IETF RFC 9421 http message signatures. Prior to version 0.0.19, the HMAC signature comparison is not…
CVE-2025-7383: Padding oracle attack vulnerability in Oberon microsystem AG’s Oberon PSA Crypto library in all versions since 1.0.0 and prior to 1.5.1…
CVE-2025-7071: Padding oracle attack vulnerability in Oberon microsystem AG’s ocrypto library in all versions since 3.1.0 and prior to 3.9.2 allows an…
CVE-2024-31074 — CVSS 5.9 (medium): Observable timing discrepancy in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may allow information disclosure via…
CVE-2024-7010 — CVSS 5.9 (medium): mudler/localai version 2.17.1 is vulnerable to a Timing Attack. This type of side-channel attack allows an attacker to compromise the…
CVE-2024-36405 — CVSS 5.9 (medium): liboqs is a C-language cryptographic library that provides implementations of post-quantum cryptography algorithms. A control-flow timing…
CVE-2024-2467 — CVSS 5.9 (medium): A timing-based side-channel flaw exists in the perl-Crypt-OpenSSL-RSA package, which could be sufficient to recover plaintext across a…
CVE-2024-3296 — CVSS 5.9 (medium): A timing-based side-channel flaw exists in the rust-openssl package, which could be sufficient to recover a plaintext across a network in a…
CVE-2023-5981 — CVSS 5.9 (medium): A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of…
CVE-2025-52457 — CVSS 5.7 (medium): Observable Timing Discrepancy (CWE-208) in HBUS devices may allow an attacker with physical access to the device to extract device-specific…
CVE-2023-20572: An observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message…
CVE-2024-52307 — CVSS 5.6 (medium): authentik is an open-source identity provider. Due to the usage of a non-constant time comparison for the /-/metrics/ endpoint it was…
CVE-2024-54772 — CVSS 5.4 (medium): An issue was discovered in the Winbox service of MikroTik RouterOS long-term release v6.43.13 through v6.49.13 and stable v6.43 through…
CVE-2026-48166 — CVSS 5.3 (medium): Filament is a collection of full-stack components for accelerated Laravel development. From 4.0.0 until 4.11.5 and 5.6.5, the login page…
CVE-2026-41161 — CVSS 5.3 (medium): Sync-in Server is a secure, open-source platform for file storage, sharing, collaboration, and syncing. Prior to version 2.2.0, the…