Lucene search

K
osvGoogleOSV:CVE-2018-0737
HistoryApr 16, 2018 - 6:29 p.m.

CVE-2018-0737

2018-04-1618:29:00
Google
osv.dev
14

AI Score

6

Confidence

High

EPSS

0.01

Percentile

84.1%

The OpenSSL RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2b-1.0.2o).

References