wolfSSL prior to version 3.12.2 provides a weak Bleichenbacher oracle when any TLS cipher suite using RSA key exchange is negotiated. An attacker can recover the private key from a vulnerable wolfSSL application. This vulnerability is referred to as "ROBOT."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wolfssl wolfssl |
||
siemens scalance_w1750d_firmware |
||
arubanetworks instant |