Lucene search
K

24 matches found

UbuntuCve
UbuntuCve
added 2019/07/30 5:15 p.m.22 views

CVE-2019-14318

Crypto++ 8.3.0 and earlier contains a timing side channel in ECDSA signature generation. This allows a local or remote attacker, able to measure the duration of hundreds to thousands of signing operations, to compute the private key used. The issue occurs because scalar multiplication in ecp.cpp...

5.9CVSS6.6AI score0.03245EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2019/07/30 4:26 p.m.24 views

CVE-2019-14318

Crypto++ 8.3.0 and earlier contains a timing side channel in ECDSA signature generation. This allows a local or remote attacker, able to measure the duration of hundreds to thousands of signing operations, to compute the private key used. The issue occurs because scalar multiplication in ecp.cpp...

5.9CVSS5.9AI score0.03245EPSS
Exploits1
OSV
OSV
added 2015/06/12 7:59 p.m.7 views

CVE-2015-1788

The BNGF2mmodinv function in crypto/bn/bngf2m.c in OpenSSL before 0.9.8s, 1.0.0 before 1.0.0e, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows remote attackers to cause a...

6.5CVSS6.7AI score0.61798EPSS
Exploits6References46
OSV
OSV
added 2011/05/31 8:55 p.m.3 views

DEBIAN-CVE-2011-1945

The elliptic curve cryptography ECC subsystem in OpenSSL 1.0.0d and earlier, when the Elliptic Curve Digital Signature Algorithm ECDSA is used for the ECDHEECDSA cipher suite, does not properly implement curves over binary fields, which makes it easier for context-dependent attackers to determine...

2.6CVSS7.6AI score0.0343EPSS
Exploits1References1
Rows per page
Query Builder