Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4438 matches found

Prion
Prionadded 2018/06/15 2:29 a.m.27 views

Memory corruption

LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host...

1.9CVSS4.9AI score0.0054EPSS
Exploits1References2Affected Software2
Prion
Prionadded 2018/06/15 2:29 a.m.16 views

Memory corruption

Botan 2.5.0 through 2.6.0 before 2.7.0 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP, related to dsa/dsa.cpp, ecgroup/ecgroup.cpp, and ecdsa/ecdsa.cpp. To discover an ECDSA key, the attacker needs access to either the local...

1.9CVSS5.4AI score0.00499EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2018/06/15 2:29 a.m.15 views

Memory corruption

LibreSSL before 2.6.5 and 2.7.x before 2.7.4 allows a memory-cache side-channel attack on DSA and ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover a key, the attacker needs access to either the local machine or a different virtual machine on the same physical ho...

1.9CVSS4.6AI score0.00321EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2018/06/15 2:29 a.m.2 views

CVE-2018-12440

BoringSSL through 2018-06-14 allows a memory-cache side-channel attack on DSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover a DSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host...

4.7CVSS5.8AI score0.00138EPSS
Exploits0References1
NVD
NVDadded 2018/06/15 2:29 a.m.23 views

CVE-2018-12434

LibreSSL before 2.6.5 and 2.7.x before 2.7.4 allows a memory-cache side-channel attack on DSA and ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover a key, the attacker needs access to either the local machine or a different virtual machine on the same physical ho...

4.7CVSS4.5AI score0.00321EPSS
Exploits0References3
NVD
NVDadded 2018/06/15 2:29 a.m.20 views

CVE-2018-12438

The Elliptic Curve Cryptography library aka sunec or libsunec allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the...

4.9CVSS4.8AI score0.00464EPSS
Exploits1References1
NVD
NVDadded 2018/06/15 2:29 a.m.27 views

CVE-2018-12436

wolfcrypt/src/ecc.c in wolfSSL before 3.15.1.patch allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physic...

4.7CVSS4.4AI score0.00371EPSS
Exploits0References3
OSV
OSVadded 2018/06/15 2:29 a.m.2 views

DEBIAN-CVE-2018-12437

LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host...

4.9CVSS6.3AI score0.0054EPSS
Exploits1References1
OSV
OSVadded 2018/06/15 2:29 a.m.28 views

CVE-2018-12437

LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host...

4.9CVSS5.2AI score
Exploits0References2
Cvelist
Cvelistadded 2018/06/15 2:0 a.m.25 views

CVE-2018-12435

Botan 2.5.0 through 2.6.0 before 2.7.0 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP, related to dsa/dsa.cpp, ecgroup/ecgroup.cpp, and ecdsa/ecdsa.cpp. To discover an ECDSA key, the attacker needs access to either the local...

5.3AI score0.00499EPSS
Exploits1References3
Cvelist
Cvelistadded 2018/06/15 2:0 a.m.15 views

CVE-2018-12439

MatrixSSL through 3.9.5 Open allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host...

4.5AI score0.00275EPSS
Exploits0References1
Cvelist
Cvelistadded 2018/06/15 2:0 a.m.31 views

CVE-2018-12436

wolfcrypt/src/ecc.c in wolfSSL before 3.15.1.patch allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physic...

4.4AI score0.00371EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2018/06/15 2:0 a.m.22 views

CVE-2018-12435

Botan 2.5.0 through 2.6.0 before 2.7.0 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP, related to dsa/dsa.cpp, ecgroup/ecgroup.cpp, and ecdsa/ecdsa.cpp. To discover an ECDSA key, the attacker needs access to either the local...

5.9CVSS6.1AI score0.00499EPSS
Exploits1
Debian CVE
Debian CVEadded 2018/06/15 2:0 a.m.23 views

CVE-2018-12437

LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host...

4.9CVSS5.4AI score0.0054EPSS
Exploits1
Debian CVE
Debian CVEadded 2018/06/15 2:0 a.m.15 views

CVE-2018-12436

wolfcrypt/src/ecc.c in wolfSSL before 3.15.1.patch allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physic...

4.7CVSS2.3AI score0.00371EPSS
Exploits0
CNVD
CNVDadded 2018/06/15 12:0 a.m.2 views

Botan ROHNP Vulnerability

Botan is a library of cryptographic algorithms in the C++ programming language that supports AES, DES, SHA-1, RSA, DSA and Diffie-Hellman. Botan suffers from a security vulnerability. An attacker can exploit this vulnerability to obtain ECDSA keys by accessing a local device or a different virtua...

5.9CVSS5.8AI score0.00499EPSS
Exploits1References1
CNVD
CNVDadded 2018/06/15 12:0 a.m.1 views

Elliptic Curve Cryptography library ROHNP vulnerability

Elliptic Curve Cryptography library aka sunec, libsunec is an open source elliptic curve cryptography library. A security vulnerability exists in the Elliptic Curve Cryptography library. An attacker can exploit this vulnerability to obtain ECDSA keys by accessing a local device or a different...

4.9CVSS4.9AI score0.00464EPSS
Exploits1References1
Prion
Prionadded 2018/06/13 11:29 p.m.27 views

Memory corruption

Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of blinding during the signing process in the gcryeccecdsasign function in cipher/ecc-ecdsa.c, aka the Return Of the Hidden Number Problem or ROHNP. T...

1.9CVSS5.6AI score0.00887EPSS
Exploits1References21Affected Software8
OSV
OSVadded 2018/06/13 11:29 p.m.40 views

CVE-2018-0495

Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of blinding during the signing process in the gcryeccecdsasign function in cipher/ecc-ecdsa.c, aka the Return Of the Hidden Number Problem or ROHNP. T...

4.7CVSS5AI score
Exploits0References21
AlpineLinux
AlpineLinuxadded 2018/06/13 11:0 p.m.55 views

CVE-2018-0495

Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of blinding during the signing process in the gcryeccecdsasign function in cipher/ecc-ecdsa.c, aka the Return Of the Hidden Number Problem or ROHNP. T...

4.7CVSS5.9AI score0.00887EPSS
Exploits1
Rows per page
Query Builder