CVE-2026-32935

HIGH

phpseclib's AES-CBC unpadding susceptible to padding oracle timing attack

Title source: cna

Description

phpseclib is a PHP secure communications library. Projects using versions 1.0.26 and below, 2.0.0 through 2.0.51, and 3.0.0 through 3.0.49 are vulnerable to a to padding oracle timing attack when using AES in CBC mode. This issue has been fixed in versions 1.0.27, 2.0.52 and 3.0.50.

References (2)

[X_Refsource_Confirm] https://github.com/phpseclib/phpseclib/security/advisories/GHSA-94g3-g5v7-q4jg

[X_Refsource_Misc] https://github.com/phpseclib/phpseclib/commit/ccc21aef71eb170e9bf819b167e67d1fd9e6e788

View Writeup ZIP pw:eip

Scores

CVSS v4 8.2

EPSS 0.0002

EPSS Percentile 5.4%

CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-208

Status published

Products (4)

phpseclib/phpseclib < 1.0.27

phpseclib/phpseclib >= 2.0.0, < 2.0.52

phpseclib/phpseclib 3.0.0 - 3.0.50Packagist

phpseclib/phpseclib >= 3.0.0, < 3.0.50

Published Mar 20, 2026

Tracked Since Mar 20, 2026