Lucene search
K

10 matches found

NVD
NVD
added 2018/07/13 8:29 p.m.21 views

CVE-2017-13096

The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property IP, as well as the management of access rights for such IP, including modification of Rights Block to remove or relax access control. The methods are flawed and, in the most egregious cases,...

7.8CVSS7.5AI score0.00455EPSS
Exploits0References2
Prion
Prion
added 2018/07/13 8:29 p.m.37 views

Design/Logic Flaw

The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property IP, as well as the management of access rights for such IP, including modification of Rights Block to remove or relax access control. The methods are flawed and, in the most egregious cases,...

4.6CVSS7.4AI score0.00455EPSS
Exploits0References2
CVE
CVE
added 2018/07/13 8:0 p.m.47 views

CVE-2017-13096

CVE-2017-13096 concerns the IEEE P1735 standard where the Rights Block (RSA-encrypted AES key) can be modified to remove or relax access control. The connected sources document a cryptographic design flaw that enables an attacker with access to EDA tools or to the standard’s workflow to alter rig...

7.8CVSS7.5AI score0.00455EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/07/13 8:0 p.m.48 views

CVE-2017-13092

CVE-2017-13092 involves the IEEE P1735 standard and a flaw in hardware description language (HDL) syntax that can allow an electronic design automation (EDA) tool to act as a decryption oracle. The vulnerability enables recovery of plaintext IP from encrypted designs and may enable insertion of h...

7.8CVSS7.4AI score0.00455EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/07/13 8:0 p.m.27 views

CVE-2017-13091 The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property (IP), including improperly specified padding in CBC mode allows use of an EDA tool as a decryption oracle

The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property IP, as well as the management of access rights for such IP, including improperly specified padding in CBC mode allows use of an EDA tool as a decryption oracle. The methods are flawed and, in t...

7.5AI score0.00455EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/07/13 8:0 p.m.15 views

CVE-2017-13093 The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property (IP), including modification of encrypted IP cyphertext to insert hardware trojans

The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property IP, as well as the management of access rights for such IP, including modification of encrypted IP cyphertext to insert hardware trojans. The methods are flawed and, in the most egregious cases...

7.5AI score0.00455EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/07/13 8:0 p.m.25 views

CVE-2017-13096 The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property (IP), including modification of Rights Block to remove or relax access control

The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property IP, as well as the management of access rights for such IP, including modification of Rights Block to remove or relax access control. The methods are flawed and, in the most egregious cases,...

7.5AI score0.00455EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/07/13 8:0 p.m.13 views

CVE-2017-13094 The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property (IP), including modification of the encryption key and insertion of hardware trojans in any IP

The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property IP, as well as the management of access rights for such IP, including modification of the encryption key and insertion of hardware trojans in any IP. The methods are flawed and, in the most...

7.5AI score0.0027EPSS
Exploits0References2
CVE
CVE
added 2018/07/13 8:0 p.m.54 views

CVE-2017-13091

CVE-2017-13091 concerns the IEEE P1735 standard’s handling of encryption for electronic-design IP. The issue arises from improperly specified padding in CBC mode, which can enable an EDA tool to function as a decryption oracle and, in the worst cases, allow recovery of the entire underlying plain...

7.8CVSS7.4AI score0.00455EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/07/13 8:0 p.m.47 views

CVE-2017-13094

The CVE-2017-13094 entry concerns flaws in the IEEE P1735 cryptographic workflow for encrypting electronic-design IP. The available documents describe that the standard enables manipulation of the encryption key and insertion of hardware trojans into IP, potentially allowing an attacker to recove...

7.8CVSS7.5AI score0.0027EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder