Описание
The C software implementation of ECC in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences.
Уязвимые конфигурации
Конфигурация 1Версия до 3.9.8 (включая)
cpe:2.3:a:wolfssl:wolfssl:*:*:*:*:*:*:*:*
EPSS
Процентиль: 33%
0.00129
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-310
Связанные уязвимости
CVSS3: 5.5
ubuntu
около 9 лет назад
The C software implementation of ECC in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences.
CVSS3: 5.5
debian
около 9 лет назад
The C software implementation of ECC in wolfSSL (formerly CyaSSL) befo ...
CVSS3: 5.5
github
больше 3 лет назад
The C software implementation of ECC in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences.
EPSS
Процентиль: 33%
0.00129
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-310