Libtom - Libtomcrypt CVE

Filtered by vendor Libtom Subscribe

Filtered by product Libtomcrypt

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-12437	2 Libtom, Linaro	2 Libtomcrypt, Op-tee	2021-06-29	1.9 LOW	4.9 MEDIUM
LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host.

Vulnerabilities (CVE)