Skip to main content

Libsunec

1 CVEs product

Monthly

CVE-2018-12438 MEDIUM POC This Month

The Elliptic Curve Cryptography library (aka sunec or libsunec) allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. Rated medium severity (CVSS 4.9), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

Information Disclosure Libsunec
NVD
CVSS 3.1
4.9
EPSS
0.5%
EPSS 0% CVSS 4.9
MEDIUM POC This Month

The Elliptic Curve Cryptography library (aka sunec or libsunec) allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. Rated medium severity (CVSS 4.9), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

Information Disclosure Libsunec
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy