CVE-2018-12436 — Sensitive Information Exposure in Wolfssl

CWE-200 — Sensitive Information Exposure4 documents4 sources

Severity

4.7MEDIUMNVD

EPSS

0.1%

top 65.94%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wolfssl Debian Wolfssl

Timeline

PublishedJun 15

Latest updateMay 14

Description

wolfcrypt/src/ecc.c in wolfSSL before 3.15.1.patch allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.0 | Impact: 3.6

Affected Packages3 packages

▶debiandebian/wolfssl< wolfssl 3.15.3+dfsg-1 (bookworm)

▶NVDwolfssl/wolfssl< 3.15.3

▶Debianwolfssl/wolfssl< 3.15.3+dfsg-1+3

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-383q-q8wg-6p5v: wolfcrypt/src/ecc↗2022-05-14

▶

OSV

CVE-2018-12436: wolfcrypt/src/ecc↗2018-06-15

▶

📋Vendor Advisories

Debian

CVE-2018-12436: wolfssl - wolfcrypt/src/ecc.c in wolfSSL before 3.15.1.patch allows a memory-cache side-ch...↗2018

▶