pypqc is vulnerable to a timing side-channel attack. The vulnerability is due to the attackerβs ability to submit numerous decapsulation requests against a single private key and gain timing information, allowing the recovery of the private key with the Kyber512, Kyber768, and Kyber1024 functions.