CVE-2024-50382 — Observable Discrepancy in Project Botan

CWE-203 — Observable Discrepancy9 documents6 sources

Severity

5.9MEDIUMNVD

OSV5.3

EPSS

0.1%

top 65.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Botan Project Botan Debian Botan

Timeline

PublishedOct 23

Latest updateJun 23

Description

Botan before 3.6.0, when certain LLVM versions are used, has compiler-induced secret-dependent control flow in lib/utils/ghash/ghash.cpp in GHASH in AES-GCM. There is a branch instead of an XOR with carry. This was observed for Clang in LLVM 15 on RISC-V.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.2 | Impact: 3.6

Affected Packages4 packages

▶debiandebian/botan< botan 2.19.3+dfsg-1+deb12u1 (bookworm)

▶NVDbotan_project/botan< 3.6.0

▶Debianbotan_project/botan< 2.19.3+dfsg-1+deb12u1+1

▶Ubuntubotan_project/botan< 2.19.1+dfsg-2ubuntu1+esm1+1

Patches

Patch: github.com ↗

🔴Vulnerability Details

OSV

botan vulnerabilities↗2025-06-23

▶

OSV

CVE-2024-50382: Botan before 3↗2024-10-23

▶

GHSA

GHSA-p27h-83pf-6hh9: Botan before 3↗2024-10-23

▶

📋Vendor Advisories

Ubuntu

Botan vulnerabilities↗2025-06-23

▶

Debian

CVE-2024-50382: botan - Botan before 3.6.0, when certain LLVM versions are used, has compiler-induced se...↗2024

▶

🕵️Threat Intelligence

Wiz

CVE-2026-32884 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶

Wiz

CVE-2026-32877 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶

Wiz

CVE-2026-32883 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶