exploitDog

GHSA-6237-9hpw-gcm6

Опубликовано: 21 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.2

Описание

Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.

Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.

Ссылки

EPSS

Процентиль: 5%

0.0002

Низкий

6.2 Medium

CVSS3

CVE ID

Дефекты

CWE-208

Связанные уязвимости

CVE-2025-54764

CVSS3: 6.2

ubuntu

4 месяца назад

Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.

CVE-2025-54764

CVSS3: 6.2

nvd

4 месяца назад

Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.

CVE-2025-54764

CVSS3: 6.2

debian

4 месяца назад

Mbed TLS before 3.6.5 allows a local timing attack against certain RSA ...

EPSS

Процентиль: 5%

0.0002

Низкий

6.2 Medium

CVSS3

CVE ID

Дефекты

CWE-208