cbcvebase.
CVE-2019-16910
published 2019-09-26

CVE-2019-16910: Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled, use an RNG with insufficient entropy for blinding, which…

PriorityP428medium5.3CVSS 3.1
AVNACHPRNUIRSUCHINAN
EPSS
1.77%
75.4th percentile
Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled, use an RNG with insufficient entropy for blinding, which might allow an attacker to recover a private key via side-channel attacks if a victim signs the same message many times. (For Mbed TLS, the fix is also available in versions 2.7.12 and 2.16.3.)

Affected

15 ranges
VendorProductVersion rangeFixed in
armmbed_crypto< 2.0.02.0.0
armmbed_tls< 2.7.122.7.12
armmbed_tls>= 2.8.0 < 2.16.32.16.3
debiandebian_linux
debianmbedtls< mbedtls 2.16.3-1 (bookworm)mbedtls 2.16.3-1 (bookworm)
fedoraprojectfedora
fedoraprojectfedora
fedoraprojectfedora
mbedmbedtls>= 0 < 2.16.3-12.16.3-1
mbedmbedtls>= 0 < 2.16.3-12.16.3-1
mbedmbedtls>= 0 < 2.16.3-12.16.3-1
mbedmbedtls>= 0 < 2.16.3-12.16.3-1
msrcazl3_qemu_8.2.0-16_on_azure_linux_3.0
msrccbl2_qemu_6.2.0-24_on_cbl_mariner_2.0
trustedfirmwarembed_tls>= 2.17.0 < 2.19.02.19.0

CVSS provenance

nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
nvdv2.02.6LOWAV:N/AC:H/Au:N/C:P/I:N/A:N
osv5.3MEDIUM
vendor_debian5.3MEDIUM
vendor_msrc5.3MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.