A timing side-channel vulnerability... CVE-2024-0914

- AV AC AU C I A
发布: 2024-01-31
修订: 2024-04-25

A timing side-channel vulnerability has been discovered in the opencryptoki package while processing RSA PKCS#1 v1.5 padded ciphertexts. This flaw could potentially enable unauthorized RSA ciphertext decryption or signing, even without access to the corresponding private key.

0%
暂无可用Exp或PoC
当前有3条受影响产品信息