A flaw was found in GnuTLS. The Minerva...... CVE-2024-28834

- AV AC AU C I A
发布: 2024-03-21
修订: 2024-09-12

A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result in a noticeable step in nonce size from 513 to 512 bits, exposing a potential timing side-channel.

0%
暂无可用Exp或PoC
当前有0条受影响产品信息