The pstm_exptmod function in MatrixSSL 3.8.6 and previous versions does not properly perform modular exponentiation, which might allow remote malicious users to predict the secret key via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-6887.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
matrixssl matrixssl |