Lucene search
K

18 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:19 a.m.7 views

CVE-2019-18222

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks...

4.7CVSS6.5AI score0.00343EPSS
Exploits0References1
OSV
OSV
added 2025/11/21 3:59 p.m.5 views

JLSEC-2025-199 The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 doe...

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks...

4.7CVSS6.4AI score0.00343EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-8022

Malware in sbrugna...

4.7CVSS4.9AI score0.00343EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-7407

Malware in sbrugna...

5.3CVSS5.2AI score0.01773EPSS
Exploits0References10
Microsoft CVE
Microsoft CVE
added 2025/09/04 12:38 a.m.10 views

Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled, use an RNG with insufficient entropy for blinding, which might allow an attacker to recover a private key via side-channel attacks if a victim signs the same message many times. (For Mbed TLS, the fix is also available in versions 2.7.12 and 2.16.3.)

...

5.3CVSS7AI score0.01773EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-18222

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse...

4.7CVSS6AI score0.00343EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:7 a.m.1 views

SUSE CVE-2019-18222

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks...

4.7CVSS4.7AI score0.00343EPSS
Exploits0References3
Veracode
Veracode
added 2020/08/06 9:31 p.m.28 views

Information Disclosure

mbedtls is vulnerable to information disclosure. The vulnerability exists as the ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key v...

4.7CVSS4.5AI score0.00343EPSS
Exploits0References7Affected Software1
ArchLinux
ArchLinux
added 2020/03/11 12:0 a.m.35 views

[ASA-202003-7] mbedtls: private key recovery

Arch Linux Security Advisory ASA-202003-7 ========================================= Severity: High Date : 2020-03-11 CVE-ID : CVE-2019-18222 Package : mbedtls Type : private key recovery Remote : No Link : https://security.archlinux.org/AVG-1104 Summary ======= The package mbedtls before version...

4.7CVSS1.9AI score0.00343EPSS
Exploits0References3
OSV
OSV
added 2020/01/23 5:15 p.m.2 views

DEBIAN-CVE-2019-18222

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks...

4.7CVSS5.3AI score0.00343EPSS
Exploits0References1
OSV
OSV
added 2020/01/23 5:15 p.m.24 views

CVE-2019-18222

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks...

4.7CVSS4.8AI score
Exploits0References5
OSV
OSV
added 2020/01/23 5:15 p.m.3 views

ALPINE-CVE-2019-18222

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks...

4.7CVSS6.6AI score0.00343EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/01/23 5:15 p.m.26 views

CVE-2019-18222

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks...

4.7CVSS6.3AI score0.00343EPSS
Exploits0References3
Prion
Prion
added 2020/01/23 5:15 p.m.20 views

Information disclosure

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks...

1.9CVSS4.7AI score0.00343EPSS
Exploits0References5Affected Software4
Cvelist
Cvelist
added 2020/01/23 12:0 a.m.36 views

CVE-2019-18222

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks...

4.7AI score0.00343EPSS
Exploits0References5
CVE
CVE
added 2020/01/23 12:0 a.m.135 views

CVE-2019-18222

CVE-2019-18222 affects Arm Mbed Crypto 2.1 and Mbed TLS up to 2.19.1: the ECDSA implementation in ecdsa.c does not reduce the blinded scalar before the inverse, enabling local side-channel attacks to recover the private key. Several advisories report upstream fixes (e.g., 2.20.0, 3.0.1) and packa...

4.7CVSS4.6AI score0.00343EPSS
Exploits0References5Affected Software2
Debian CVE
Debian CVE
added 2020/01/23 12:0 a.m.35 views

CVE-2019-18222

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks...

4.7CVSS4.9AI score0.00343EPSS
Exploits0
OSV
OSV
added 2019/09/26 1:15 p.m.2 views

DEBIAN-CVE-2019-16910

Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled, use an RNG with insufficient entropy for blinding, which might allow an attacker to recover a private key via side-channel attacks if a victim signs the same message many times. For Mbed TLS, the fix...

5.3CVSS6.4AI score0.01773EPSS
Exploits0References1
Rows per page
Query Builder