Lucene search
K

5 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/04/13 9:46 p.m.4 views

Security Bulletin: Vulerability in IBM Spectrum Symphony with OpenSSL

Summary Vulerability in IBM Spectrum Symphony with OpenSSL Vulnerability Details CVEID:CVE-2024-13176 DESCRIPTION: Issue summary: A timing side-channel which could potentially allow recovering the private key exists in the ECDSA signature computation. Impact summary: A timing side-channel in ECDS...

4.1CVSS5.8AI score0.00601EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : nss-3.53.1-17.0.1.el8 (AXSA:2021-1536:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1536:01 advisory. nss: Side channel attack on ECDSA signature generation CVE-2020-6829 nss: P-384 and P-521 implementation uses a side-channel vulnerable modular...

9.1CVSS8.2AI score0.01541EPSS
Exploits0References4
OSV
OSV
added 2025/10/09 5:1 p.m.10 views

CLSA-2025-1760029279 openssl: Fix of 2 CVEs

CVE-2019-1547: fix side-channel vulnerability in ECDSA when using explicit EC parameters without cofactor - CVE-2025-9230: fix incorrect check of unwrapped key size...

7.5CVSS5.8AI score0.01744EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/05/12 12:0 a.m.7 views

EulerOS 2.0 SP10 : openssl (EulerOS-SA-2025-1533)

According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Issue summary: A timing side-channel which could potentially allow recovering the private key exists in the ECDSA signature computation. Impact...

4.1CVSS6.4AI score0.00601EPSS
Exploits0References2
OSV
OSV
added 2019/12/17 11:14 p.m.4 views

USN-4223-1 openjdk-8, openjdk-lts vulnerabilities

Jan Jancar, Petr Svenda, and Vladimir Sedlacek discovered that a side- channel vulnerability existed in the ECDSA implementation in OpenJDK. An Attacker could use this to expose sensitive information. CVE-2019-2894 It was discovered that the Socket implementation in OpenJDK did not properly...

6.8CVSS7AI score0.03749EPSS
Exploits0References17
Rows per page
Query Builder