JLSEC-2026-214 Normally in OpenSSL EC groups always have a co-factor present and this is used in side channel...

🗓️ 27 Apr 2026 18:33:55Reported by GoogleType

osv🔗 osv.dev👁 5 Views

Explicit parameter EC groups may lack a cofactor in OpenSSL, risking ECDSA key recovery; libssl not vulnerable; fixed in versions.

Reporter	Title	Published	Views	Family All 310
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in openssl shipped with PowerAI Vision	8 Jan 202019:00	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in OpenSSL affects IBM Storage Protect Backup-Archive Client on Linux x86_64 and Microsoft Windows (CVE-2019-1547)	31 Oct 202314:40	–	ibm
IBM Security Bulletins	Security Bulletin: Information Disclosure in Cognos Business Intelligence (Cognos BI) shipped with Tivoli Common Reporting (CVE-2019-1547, CVE-2019-1549, CVE-2019-1563)	19 Mar 202005:19	–	ibm
IBM Security Bulletins	Security Bulletin: OpenSSL vulnerability affects IBM Rational Team Concert	12 Feb 202016:09	–	ibm
IBM Security Bulletins	Security Bulletin: OpenSSL vulnerabilities affect IBM Spectrum Control (formerly Tivoli Storage Productivity Center)	22 Feb 202220:10	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Proventia Network Active Bypass is affected by openssl vulnerabilities (CVE-2019-1547, CVE-2019-1563)	23 Oct 201903:29	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in Openssl shipped with PowerAI.	10 Jan 202019:12	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in OpenSSL Affect IBM Sterling Connect:Direct for HP NonStop	24 Jul 202022:19	–	ibm
IBM Security Bulletins	Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - OpenSSL (CVE-2019-1563, CVE-2019-1549, CVE-2019-1547)	26 Sep 202018:07	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM i	19 Dec 201923:43	–	ibm

Source	Link
lists	www.lists.opensuse.org/opensuse-security-announce/2019-09/msg00054.html
lists	www.lists.opensuse.org/opensuse-security-announce/2019-09/msg00072.html
lists	www.lists.opensuse.org/opensuse-security-announce/2019-10/msg00012.html
lists	www.lists.opensuse.org/opensuse-security-announce/2019-10/msg00016.html
packetstormsecurity	www.packetstormsecurity.com/files/154467/Slackware-Security-Advisory-openssl-Updates.html
arxiv	www.arxiv.org/abs/1909.01785
git	www.git.openssl.org/gitweb/
git	www.git.openssl.org/gitweb/
git	www.git.openssl.org/gitweb/
git	www.git.openssl.org/gitweb/

27 Apr 2026 19:02Current

6.5Medium risk

Vulners AI Score6.5

CVSS 21.9

CVSS 3.14.7

EPSS0.01198

SSVC