CVE-2016-6887

Опубликовано: 13 янв. 2017

Источник: ubuntu

Приоритет: low

CVSS2: 4.3

CVSS3: 5.9

Описание

The pstm_exptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via a CRT attack.

Релиз	Статус	Примечание
artful	DNE
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was needed]
precise	ignored	end of life
precise/esm	DNE	precise was needed
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was needed

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2016-6887

4.3 Medium

CVSS2

5.9 Medium

CVSS3

Связанные уязвимости

CVE-2016-6887

CVSS3: 5.9

nvd

около 9 лет назад

The pstm_exptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via a CRT attack.

CVE-2016-6887

CVSS3: 5.9

debian

около 9 лет назад

The pstm_exptmod function in MatrixSSL 3.8.6 and earlier does not prop ...

GHSA-c35w-7j4x-j365

CVSS3: 5.9

github

больше 3 лет назад

The pstm_exptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via a CRT attack.

4.3 Medium

CVSS2

5.9 Medium

CVSS3

CVE-2016-6887

Описание

Пакет matrixssl

Ссылки на источники

Связанные уязвимости