CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1463 matches found

OSV•added 2016/12/13 4:59 p.m.•8 views

CVE-2016-7439

The C software implementation of RSA in wolfSSL formerly CyaSSL before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences...

5.5CVSS6.5AI score

Exploits0References2

OSV•added 2016/12/13 4:59 p.m.•4 views

DEBIAN-CVE-2016-7439

The C software implementation of RSA in wolfSSL formerly CyaSSL before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences...

5.5CVSS5.1AI score0.00368EPSS

Exploits0References1

OSV•added 2016/12/13 4:59 p.m.•5 views

CVE-2016-7438

The C software implementation of ECC in wolfSSL formerly CyaSSL before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences...

5.5CVSS6.5AI score

Exploits0References2

OSV•added 2016/12/13 4:59 p.m.•3 views

DEBIAN-CVE-2016-7438

The C software implementation of ECC in wolfSSL formerly CyaSSL before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences...

5.5CVSS6.5AI score0.00368EPSS

Exploits0References1

UbuntuCve•added 2016/12/13 4:59 p.m.•28 views

CVE-2016-7439

The C software implementation of RSA in wolfSSL formerly CyaSSL before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences...

5.5CVSS6.1AI score0.00368EPSS

Exploits0References2

Prion•added 2016/12/13 4:59 p.m.•16 views

Information disclosure

The C software implementation of RSA in wolfSSL formerly CyaSSL before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences...

2.1CVSS6.7AI score0.00368EPSS

Exploits0References2Affected Software1

UbuntuCve•added 2016/12/13 4:59 p.m.•24 views

CVE-2016-7438

The C software implementation of ECC in wolfSSL formerly CyaSSL before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences...

5.5CVSS6.1AI score0.00368EPSS

Exploits0References2

OSV•added 2016/12/13 4:59 p.m.•3 views

UBUNTU-CVE-2016-7439

The C software implementation of RSA in wolfSSL formerly CyaSSL before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences...

5.5CVSS6AI score0.00368EPSS

Exploits0References3

OSV•added 2016/12/13 4:59 p.m.•3 views

UBUNTU-CVE-2016-7438

The C software implementation of ECC in wolfSSL formerly CyaSSL before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences...

5.5CVSS5.8AI score0.00368EPSS

Exploits0References3

CVE•added 2016/12/13 4:0 p.m.•40 views

CVE-2016-7438

The CVE-2016-7438 entry concerns wolfSSL (formerly CyaSSL) and its C software implementation of ECC. Affected is wolfSSL versions before 3.9.10, where the ECC code enables local attackers to more easily discover RSA keys by exploiting cache-bank hit differences. The impact is local, with partial ...

5.5CVSS5.3AI score0.00368EPSS

Exploits0References2Affected Software1

CVE•added 2016/12/13 4:0 p.m.•40 views

CVE-2016-7439

CVE-2016-7439 affects the C RSA implementation in wolfSSL (formerly CyaSSL) prior to 3.9.10. The vulnerability allows a local attacker to obtain RSA keys by exploiting cache-bank hit differences, i.e., an information-disclosure issue. Affected products/versions are wolfSSL before 3.9.10; impact i...

5.5CVSS5.3AI score0.00368EPSS

Exploits0References2Affected Software1

Cvelist•added 2016/12/13 4:0 p.m.•27 views

CVE-2016-7439

The C software implementation of RSA in wolfSSL formerly CyaSSL before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences...

5.3AI score0.00368EPSS

Exploits0References2

MariaDBUnix•added 2016/12/13 4:0 p.m.•30 views

CVE-2016-7440

Disclaimer: This data contains information about vulnerable...

5.5CVSS6.6AI score0.00304EPSS

Exploits0

CVE•added 2016/12/13 4:0 p.m.•145 views

CVE-2016-7440

The CVE-2016-7440 issue affects the wolfSSL (formerly CyaSSL) C library’s AES Encryption/Decryption implementation prior to 3.9.10. The vulnerability enables local users to potentially discover AES keys by exploiting cache-bank timing differences during AES operations. The available connected doc...

5.5CVSS5.4AI score0.00304EPSS

Exploits0References6Affected Software1

Cvelist•added 2016/12/13 4:0 p.m.•28 views

CVE-2016-7440

The C software implementation of AES Encryption and Decryption in wolfSSL formerly CyaSSL before 3.9.10 makes it easier for local users to discover AES keys by leveraging cache-bank timing differences...

5.5AI score0.00304EPSS

Exploits0References6

Debian CVE•added 2016/12/13 4:0 p.m.•31 views

CVE-2016-7440

5.5CVSS1.9AI score0.00304EPSS

Exploits0

Debian CVE•added 2016/12/13 4:0 p.m.•17 views

CVE-2016-7439

The C software implementation of RSA in wolfSSL formerly CyaSSL before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences...

5.5CVSS2.4AI score0.00368EPSS

Exploits0

Debian CVE•added 2016/12/13 4:0 p.m.•19 views

CVE-2016-7438

The C software implementation of ECC in wolfSSL formerly CyaSSL before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences...

5.5CVSS2.5AI score0.00368EPSS

Exploits0