3 matches found
CVE-2002-0939
The CVE applies to the Install Wizard for nCipher MSCAPI CSP 5.50. The issue is that when a user requests Operator Card Set protected keys but does not actually generate the Operator Card Set, the wizard ends up using only module protection rather than the higher protection level that the user in...
CVE-2006-1115
CVE-2006-1115 affects nCipher HSM prior to 2.22.6. When generating a Diffie-Hellman public/private key pair without explicit DiscreteLogGroup parameters, the HSM may choose random parameters that could let an attacker recover the private key in less time than a brute-force search. The provided do...
CVE-2002-0940
This CVE concerns domesticinstall.exe for nCipher MSCAPI CSP 5.50 and 5.54, where the software does not use Operator Card Set protected keys when the user requests them if the Operator Card Set has not been generated. The outcome is a lower protection level than the user-specified module protecti...