{"vulnerability": "CVE-2024-2883", "sightings": [{"uuid": "d4c983a2-66e1-4cc5-9b0b-1b36983cb0d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-28834", "type": "seen", "source": "https://t.me/arpsyndicate/4644", "content": "#ExploitObserverAlert\n\nCVE-2024-28834\n\nDESCRIPTION: Exploit Observer has 6 entries in 3 file formats related to CVE-2024-28834. A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result in a noticeable step in nonce size from 513 to 512 bits, exposing a potential timing side-channel.\n\nFIRST-EPSS: 0.000450000\nARPS-EXPLOITABILITY: 0.723201", "creation_timestamp": "2024-04-13T12:08:02.000000Z"}, {"uuid": "7a1bfc0f-1982-4ffa-a6fe-e8306ee5ee72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2883", "type": "seen", "source": "https://t.me/ctinow/213857", "content": "https://ift.tt/OwLg9Pk\nThreat Bulletin \u2013 CVE-2024-2883", "creation_timestamp": "2024-04-03T18:07:13.000000Z"}]}