Op-tee@* Security Vulnerabilities and Issues — Op-tee@* CVE List

Lucene search

LinaroOp-tee*

3 matches found

CVE•added 2018/06/15 2:29 a.m.•80 views

CVE-2018-12437

LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host.

4.9CVSS4.8AI score0.00082EPSS

CVE•added 2018/01/02 5:29 p.m.•41 views

CVE-2017-1000412

Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable to the bellcore attack in the LibTomCrypt code resulting in compromised private RSA key.

7.5CVSS7.5AI score0.00345EPSS

CVE•added 2018/01/02 5:29 p.m.•38 views

CVE-2017-1000413

Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable a timing attack in the Montgomery parts of libMPA in OP-TEE resulting in a compromised private RSA key.

5.9CVSS5.7AI score0.00345EPSS