0.001 Low
EPSS
Percentile
49.2%
An issue was discovered in Arm Mbed TLS before 2.23.0. A side channel allows recovery of an ECC private key, related to mbedtls_ecp_check_pub_priv, mbedtls_pk_parse_key, mbedtls_pk_parse_keyfile, mbedtls_ecp_mul, and mbedtls_ecp_mul_restartable.
bugs.gentoo.org/730752
github.com/ARMmbed/mbedtls/releases/tag/v2.16.7
github.com/ARMmbed/mbedtls/releases/tag/v2.23.0
launchpad.net/bugs/cve/CVE-2020-36422
nvd.nist.gov/vuln/detail/CVE-2020-36422
security-tracker.debian.org/tracker/CVE-2020-36422
www.cve.org/CVERecord?id=CVE-2020-36422