CVE-2019-13628

Published: 03/10/2019 Updated: 10/10/2019

CVSS v2 Base Score: 1.2 | Impact Score: 2.9 | Exploitability Score: 1.9

CVSS v3 Base Score: 4.7 | Impact Score: 3.6 | Exploitability Score: 1

VMScore: 107

Vector: AV:L/AC:H/Au:N/C:P/I:N/A:N

wolfSSL and wolfCrypt 4.0.0 and previous versions (when configured without --enable-fpecc, --enable-sp, or --enable-sp-math) contain a timing side channel in ECDSA signature generation. This allows a local attacker, able to precisely measure the duration of signature operations, to infer information about the nonces used and potentially mount a lattice attack to recover the private key used. The issue occurs because ecc.c scalar multiplication might leak the bit length.

Vulnerable Product	Search on Vulmon	Subscribe to Product
wolfssl wolfssl

*Webpage* ========= minervacrocsfimunicz/ *Vulnerability* =============== Minerva is a group of vulnerabilities in ECDSA/EdDSA implementations that allows for practical recovery of the long-term private key We have found implementations which leak the bit-length of the scalar during scalar multiplication on an elliptic curve This ...

CWE-203 https://tches.iacr.org/index.php/TCHES/article/view/7337 http://www.openwall.com/lists/oss-security/2019/10/02/2 https://minerva.crocs.fi.muni.cz/https://eprint.iacr.org/2011/232.pdf https://nvd.nist.gov http://seclists.org/oss-sec/2019/q4/3

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-13628

Vulnerability Summary

Vulnerability Trend

Mailing Lists

References

Vulmon Search

About

Products

Connect