Lucene search
+L

6 matches found

osv
osv
added 2025/11/21 3:59 p.m.12 views

JLSEC-2025-232 Side channel in RSA key generation and operations (SSBleed, M-Step)

Vulnerability Mbed TLS's modular inversion routine and GCD routine are vulnerable to local timing attacks in a number of settings discussed below. These functions are used in RSA, making the following operations vulnerable in all configurations: - RSA key generation with any API mbedtlsrsagenkey...

6.2CVSS7.1AI score0.00206EPSS
Exploits1References2
nessus
nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989804)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989804 advisory. In the Linux kernel, the following vulnerability has been resolved: crypto: aead,cipher - zeroize key buffer after use I.G 9.7.B for FIPS 140-3 specifies that...

4.1CVSS6.3AI score0.00228EPSS
Exploits0References3
nessus
nessus
added 2025/11/05 12:0 a.m.9 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990291)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990291 advisory. In the Linux kernel, the following vulnerability has been resolved: crypto: aead,cipher - zeroize key buffer after use I.G 9.7.B for FIPS 140-3 specifies that...

4.1CVSS6.3AI score0.00228EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2025/08/27 12:0 a.m.6 views

PT-2025-34839 · Unknown · Editso Fuso

Name of the Vulnerable Software and Affected Versions: editso fuso versions up to 1.0.4-beta.7 Description: A flaw exists due to inadequate encryption strength caused by the manipulation of the priv key argument within the PenetrateRsaAndAesHandshake function located in the...

6.3CVSS7.1AI score0.00141EPSS
Exploits0References8
osv
osv
added 2025/07/04 4:2 p.m.1 views

SUSE-SU-2025:02229-1 Security update for libssh

This update for libssh fixes the following issues: - CVE-2025-5318: Fixed likely read beyond bounds in sftp server handle management bsc1245311. - CVE-2025-4877: Fixed write beyond bounds in binary to base64 conversion functions bsc1245309. - CVE-2025-4878: Fixed use of uninitialized variable in...

8.8CVSS7.3AI score0.02449EPSS
Exploits0References9
cnvd
cnvd
added 2016/10/20 12:0 a.m.5 views

MatrixSSL pstm_exptmod Function Miscalculation Vulnerability

INSIDE Secure MatrixSSL is an embedded, open source SSLv3 stack from INSIDE Secure, France, designed for small applications and devices. The pstmexptmod in MatrixSSL inputs incorrect results for certain parameters, causing the associated cryptographic functions to fail to handle the private key...

5.9CVSS6AI score0.01347EPSS
Exploits0References1
Rows per page
Query Builder