CVE-2025-46833 MEDIUM

CVE-2025-46833: Programs/P73_SimplePythonEncryption.py has weak cryptographic key

Vendor Shashikantsingh09

Product python-progrrames

Weakness CWE-326 · Weak encryption

Published May 8, 2025

Last update May 8, 2025

View on NVD All CVEs

CVSS base score

4.6/10

Attack vector Network

Attack complexity Low

Privileges required None

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U

What the vulnerability does

Description

Programs/P73_SimplePythonEncryption.py illustrates a simple Python encryption example using the RSA Algorithm. In versions prior to commit 6ce60b1, an attacker may be able to decrypt the data using brute force attacks and because of this the whole application can be impacted. This issue has been patched in commit 6ce60b1. A workaround involves increasing the key size, for RSA or DSA this is at least 2048 bits, for ECC this is at least 256 bits.

Key dates

Disclosure timeline

May 8, 2025 CVE published

May 8, 2025 Record updated