Lucene search
K

90 matches found

NVD
NVD
added 2025/11/21 11:15 p.m.7 views

CVE-2025-12888

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture limitations, specifically with the Xtensa-based ESP32 chips. If targeting Xtensa it is recommended to use the low memory implementations of...

7.5CVSS0.00274EPSS
Exploits0References1
OSV
OSV
added 2025/11/21 11:15 p.m.5 views

CVE-2025-12888

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture limitations, specifically with the Xtensa-based ESP32 chips. If targeting Xtensa it is recommended to use the low memory implementations of...

7.5CVSS6.7AI score
Exploits0References1
OSV
OSV
added 2025/11/21 11:15 p.m.3 views

DEBIAN-CVE-2025-12888

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture limitations, specifically with the Xtensa-based ESP32 chips. If targeting Xtensa it is recommended to use the low memory implementations of...

7.5CVSS5.2AI score0.00274EPSS
Exploits0References1
OSV
OSV
added 2025/11/21 11:15 p.m.3 views

UBUNTU-CVE-2025-12888

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture limitations, specifically with the Xtensa-based ESP32 chips. If targeting Xtensa it is recommended to use the low memory implementations of...

7.5CVSS5.8AI score0.00274EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2025/11/21 10:50 p.m.4 views

CVE-2025-12888

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture limitations, specifically with the Xtensa-based ESP32 chips. If targeting Xtensa it is recommended to use the low memory implementations of...

7.5CVSS6.8AI score0.00274EPSS
Exploits0
Cvelist
Cvelist
added 2025/11/21 10:50 p.m.15 views

CVE-2025-12888 Constant Time Issue with Xtensa-based ESP32 and X22519

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture limitations, specifically with the Xtensa-based ESP32 chips. If targeting Xtensa it is recommended to use the low memory implementations of...

1CVSS0.00274EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/21 10:50 p.m.2 views

CVE-2025-12888 Constant Time Issue with Xtensa-based ESP32 and X22519

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture limitations, specifically with the Xtensa-based ESP32 chips. If targeting Xtensa it is recommended to use the low memory implementations of...

1CVSS6.4AI score0.00274EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/21 10:50 p.m.4 views

EUVD-2025-198523

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture limitations, specifically with the Xtensa-based ESP32 chips. If targeting Xtensa it is recommended to use the low memory implementations of...

1CVSS6.2AI score0.00274EPSS
Exploits0References2
CVE
CVE
added 2025/11/21 10:50 p.m.586 views

CVE-2025-12888

CVE-2025-12888 affects X25519 constant-time implementations, with timing side channels arising from compiler optimizations and CPU architecture constraints on Xtensa-based ESP32 chips. The issue is tied to the X25519 code path and may impact confidentiality (per CVSS data, base score high in some...

7.5CVSS6.4AI score0.00274EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2025/11/21 10:50 p.m.7 views

CVE-2025-12888

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture limitations, specifically with the Xtensa-based ESP32 chips. If targeting Xtensa it is recommended to use the low memory implementations of...

7.5CVSS5.2AI score0.00274EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/11/21 12:0 a.m.8 views

PT-2025-47821

Name of the Vulnerable Software and Affected Versions X25519 affected versions not specified Description A flaw exists in X25519 constant-time cryptographic implementations due to timing side channels. These side channels are introduced by compiler optimizations and CPU architecture limitations,...

7.5CVSS6.5AI score0.00274EPSS
Exploits0References10
FreeBSD
FreeBSD
added 2025/11/20 12:0 a.m.10 views

wolfssl -- multiple issues

wolfSSL blog reports: This release includes multiple fixes across TLS 1.2, TLS 1.3, X25519, XChaCha20-Poly1305, and PSK processing. Highlights include: A timing-side-channel issue in X25519 specifically affecting Xtensa-based ESP32 devices. Low-memory X25519 implementations are now the default fo...

8.2CVSS7.1AI score0.00408EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/11/15 12:24 a.m.7 views

SUSE CVE-2025-40193

In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...

6.4AI score0.00187EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2025/11/14 9:3 a.m.7 views

xtensa: simdisk: add input size check in proc_write_simdisk

...

5.5CVSS7AI score0.00187EPSS
Exploits0
EUVD
EUVD
added 2025/11/13 12:30 a.m.5 views

EUVD-2025-150381

In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...

5.8AI score0.00187EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-40193

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel cras...

6.2AI score0.00187EPSS
Exploits0References3
NVD
NVD
added 2025/11/12 10:15 p.m.6 views

CVE-2025-40193

In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...

0.00187EPSS
Exploits0References5
OSV
OSV
added 2025/11/12 10:15 p.m.3 views

DEBIAN-CVE-2025-40193

In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...

5.1AI score0.00187EPSS
Exploits0References1
OSV
OSV
added 2025/11/12 10:15 p.m.6 views

AZL-70109 CVE-2025-40193 affecting package kernel for versions less than 6.6.117.1-1

In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...

5.6AI score0.00187EPSS
Exploits0References1
OSV
OSV
added 2025/11/12 10:15 p.m.9 views

UBUNTU-CVE-2025-40193

In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...

5.7AI score0.00187EPSS
Exploits0References23
Rows per page
Query Builder