CVE-2026-32935 — Observable Timing Discrepancy in Phpseclib
Severity
8.2HIGHNVD
EPSS
0.0%
top 97.43%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMar 20
Latest updateApr 10
Description
phpseclib is a PHP secure communications library. Projects using versions 1.0.26 and below, 2.0.0 through 2.0.51, and 3.0.0 through 3.0.49 are vulnerable to a to padding oracle timing attack when using AES in CBC mode. This issue has been fixed in versions 1.0.27, 2.0.52 and 3.0.50.
CVSS vector
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
Affected Packages7 packages
Patches
🔴Vulnerability Details
4GHSA▶
phpseclib has a variable-time HMAC comparison in SSH2::get_binary_packet() using != instead of hash_equals()↗2026-04-10
📋Vendor Advisories
1Debian▶
CVE-2026-32935: php-phpseclib - phpseclib is a PHP secure communications library. Projects using versions 1.0.26...↗2026
🕵️Threat Intelligence
1💬Community
3Bugzilla▶
CVE-2026-32935 nextcloud: phpseclib: Information disclosure via padding oracle timing attack when using AES in CBC mode [epel-all]↗2026-03-20
Bugzilla▶
CVE-2026-32935 nextcloud: phpseclib: Information disclosure via padding oracle timing attack when using AES in CBC mode [fedora-43]↗2026-03-20
Bugzilla▶
CVE-2026-32935 nextcloud: phpseclib: Information disclosure via padding oracle timing attack when using AES in CBC mode [fedora-42]↗2026-03-20