What is the CVSS score of CVE-2025-27587?

CVE-2025-27587 has a CVSS 3.1 base score of 5.3 (Medium). CVSS vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N. EPSS exploitation probability: 0.1%.

Which versions of OpenSSL are affected by CVE-2025-27587?

Organizations using OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture should be aware of moderate risk from CVE-2025-27587 rated CVSS 5.3.. A patch is available.

How to fix or mitigate CVE-2025-27587?

Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. Monitor vendor channels for patch availability.

OpenSSL CVE-2025-27587

EUVD-2025-18430 MEDIUM

Covert Timing Channel (CWE-385)

2025-06-16 cve@mitre.org

Information Disclosure OpenSSL Debian Ubuntu Suse

5.3

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Lifecycle Timeline

Patch released

Mar 31, 2026 - 21:13 nvd

Patch available

EUVD ID Assigned

Mar 14, 2026 - 21:59 euvd

EUVD-2025-18430

Analysis Generated

Mar 14, 2026 - 21:59 vuln.today

CVE Published

Jun 16, 2025 - 22:15 nvd

MEDIUM 5.3

DescriptionNVD

OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable to a Minerva attack, exploitable by measuring the time of signing of random messages using the EVP_DigestSign API, and then using the private key to extract the K value (nonce) from the signatures. Next, based on the bit size of the extracted nonce, one can compare the signing time of full-sized nonces to signatures that used smaller nonces, via statistical tests. There is a side-channel in the P-364 curve that allows private key extraction (also, there is a dependency between the bit size of K and the size of the side channel). NOTE: This CVE is disputed because the OpenSSL security policy explicitly notes that any side channels which require same physical system to be detected are outside of the threat model for the software. The timing signal is so small that it is infeasible to be detected without having the attacking process running on the same physical system.

AnalysisAI

A security vulnerability in OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture (CVSS 5.3). Remediation should follow standard vulnerability management procedures.

Technical ContextAI

Vulnerability type not specified by vendor. Affects OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture.

RemediationAI

Monitor vendor channels for patch availability.

More from same product – last 7 days

CVE-2026-9256 HIGH This Week

8.1 May 22

Heap buffer overflow in NGINX Plus and NGINX Open Source ngx_http_rewrite_module allows unauthenticated remote attackers

CVE-2026-47269 HIGH This Week

7.4 May 27

Authentication-context bypass in pam_usb before 0.9.0 lets a person holding an enrolled USB device authenticate over SSH

CVE-2026-47271 MEDIUM This Month

5.1 May 27

pam_usb prior to 0.9.0 crashes under memory pressure due to assert()-based OOM guards in src/mem.c that are silently str

CVE-2026-45898 Awaiting Data

May 27

In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix workqueue list corruption by removin

CVE-2026-45924 Awaiting Data

May 27

In the Linux kernel, the following vulnerability has been resolved: ksmbd: call ksmbd_vfs_kern_path_end_removing() on s

Vendor StatusVendor

Ubuntu

Priority: Low

openssl1.0

Release	Status	Version
jammy	DNE	-
noble	DNE	-
oracular	DNE	-
plucky	DNE	-
upstream	needs-triage	-
questing	DNE	-
bionic	not-affected	3.x only

nodejs

Release	Status	Version
trusty	not-affected	uses system openssl
focal	not-affected	uses system openssl
noble	not-affected	uses system openssl
oracular	not-affected	uses system openssl
plucky	not-affected	uses system openssl
upstream	needs-triage	-
bionic	ignored	disputed by OpenSSL develpers
jammy	ignored	disputed by OpenSSL develpers
xenial	ignored	disputed by OpenSSL develpers
questing	not-affected	uses system openssl

edk2

Release	Status	Version
upstream	needs-triage	-
oracular	ignored	end of life, was needs-triage
bionic	not-affected	powerpc only
focal	not-affected	powerpc only
jammy	not-affected	powerpc only
noble	not-affected	powerpc only
plucky	not-affected	powerpc only
xenial	not-affected	powerpc only
questing	not-affected	powerpc only

openssl

Release	Status	Version
oracular	ignored	end of life, was needs-triage
plucky	not-affected	3.4.1-1ubuntu3
bionic	not-affected	3.x only
focal	not-affected	3.x only
jammy	ignored	disputed by OpenSSL develpers
noble	ignored	disputed by OpenSSL develpers
upstream	released	3.4.2,3.5.0
questing	not-affected	3.5.2-1ubuntu1
trusty	not-affected	3.x only
xenial	not-affected	3.x only

Debian

openssl

Release	Status	Fixed Version	Urgency
bullseye	vulnerable	1.1.1w-0+deb11u1	-
bullseye (security)	vulnerable	1.1.1w-0+deb11u5	-
bookworm	vulnerable	3.0.18-1~deb12u1	-
bookworm (security)	vulnerable	3.0.18-1~deb12u2	-
trixie	fixed	3.5.5-1~deb13u1	-
trixie (security)	fixed	3.5.4-1~deb13u2	-
forky	fixed	3.5.5-1	-
sid	fixed	3.6.1-2	-
(unstable)	fixed	3.5.0-1	unimportant

CVE-2025-27587 vulnerability details – vuln.today

Back

OpenSSL CVE-2025-27587

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

More from same product – last 7 days

Vendor StatusVendor

Ubuntu

Debian

Share

External POC / Exploit Code