CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•13 views

Astra Linux - уязвимость в mbedtls

A vulnerability was discovered in Arm Mbed TLS before versions 2.16.6 and 2.7.x, prior to 2.7.15. An attacker who can obtain precise side-channel measurements can recover the long-term ECDSA private key by 1 reconstructing the projective coordinates of the result of scalar multiplication by...

4.7CVSS6.2AI score0.00044EPSS

Exploits0References1

OSV•added 2025/11/21 3:59 p.m.•2 views

JLSEC-2025-201 An issue was discovered in Arm Mbed TLS before 2.16.6 and 2.7.x before 2.7.15

An issue was discovered in Arm Mbed TLS before 2.16.6 and 2.7.x before 2.7.15. An attacker that can get precise enough side-channel measurements can recover the long-term ECDSA private key by 1 reconstructing the projective coordinate of the result of scalar multiplication by exploiting side...

4.7CVSS6.6AI score0.00044EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-3338

Malware in sbrugna...

4.7CVSS4.9AI score0.00044EPSS

Exploits0References10

Tenable Nessus•added 2025/08/08 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2020-10932

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Arm Mbed TLS before 2.16.6 and 2.7.x before 2.7.15. An attacker that can get precise enough side-channel measurements can recover the...

4.7CVSS5.6AI score0.00044EPSS

Exploits0References2

SUSE CVE•added 2023/02/15 4:0 a.m.•2 views

SUSE CVE-2020-10932

4.7CVSS4.9AI score0.00044EPSS

Exploits0References5

Github Security Blog•added 2022/05/24 4:57 p.m.•18 views

wolfCrypt leaks cryptographic information via timing side channel

wolfSSL and wolfCrypt 4.0.0 and earlier when configured without --enable-fpecc, --enable-sp, or --enable-sp-math contain a timing side channel in ECDSA signature generation. This allows a local attacker, able to precisely measure the duration of signature operations, to infer information about th...

4.7CVSS6.3AI score0.00145EPSS

Exploits0References6Affected Software1

OSV•added 2022/05/24 4:57 p.m.•8 views

GHSA-Q95H-VC86-HV77 wolfCrypt leaks cryptographic information via timing side channel

4.7CVSS4.3AI score0.00145EPSS

Exploits0References6

OSV•added 2020/04/15 2:15 p.m.•1 views

ALPINE-CVE-2020-10932

4.7CVSS6.7AI score0.00044EPSS

Exploits0References1

NVD•added 2020/04/15 2:15 p.m.•15 views

CVE-2020-10932

4.7CVSS4.9AI score0.00044EPSS

Exploits0References6

OSV•added 2020/04/15 2:15 p.m.•1 views

DEBIAN-CVE-2020-10932

4.7CVSS5.5AI score0.00044EPSS

Exploits0References1

OSV•added 2020/04/15 2:15 p.m.•0 views

UBUNTU-CVE-2020-10932

4.7CVSS7.1AI score0.00044EPSS

Exploits0References5

Prion•added 2020/04/15 2:15 p.m.•9 views

Design/Logic Flaw

1.9CVSS4.8AI score0.00044EPSS

Exploits0References6Affected Software3

OSV•added 2019/12/11 6:16 p.m.•9 views

CVE-2019-14317

wolfSSL and wolfCrypt 4.1.0 and earlier formerly known as CyaSSL generate biased DSA nonces. This allows a remote attacker to compute the long term private key from several hundred DSA signatures via a lattice attack. The issue occurs because dsa.c fixes two bits of the generated nonces...

5.3CVSS6.8AI score

Exploits0References1

NVD•added 2019/12/11 6:16 p.m.•10 views

CVE-2019-14317

5.3CVSS5.2AI score0.00392EPSS

Exploits0References1

OSV•added 2019/12/11 6:16 p.m.•1 views

DEBIAN-CVE-2019-14317

5.3CVSS5.8AI score0.00392EPSS

Exploits0References1

OSV•added 2019/12/11 6:16 p.m.•0 views

UBUNTU-CVE-2019-14317