CVE-2025-12888 — Observable Discrepancy in Wolfssl

CWE-203 — Observable Discrepancy CWE-755 — Improper Handling of Exceptional Conditions6 documents5 sources

Severity

1.0LOWNVD

EPSS

0.0%

top 97.97%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wolfssl Debian Wolfssl Msrc Azl3 Mariadb 10.11.11-1 ON Azure Linux 3.0 +4 more

Timeline

PublishedNov 21

Latest updateNov 22

Description

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture limitations, specifically with the Xtensa-based ESP32 chips. If targeting Xtensa it is recommended to use the low memory implementations of X25519, which is now turned on as the default for Xtensa.

CVSS vector

CVSS:4.0/AV:P/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:L/SI:L/SA:N

Affected Packages9 packages

▶debiandebian/wolfssl< wolfssl 5.8.4-1 (forky)

▶CVEListV5wolfssl/wolfssl< 5.8.4

▶Debianwolfssl/wolfssl< 5.8.4-1

▶NVDwolfssl/wolfssl5.8.2

▶msrcmsrc/cbl_mariner_1.0_arm

🔴Vulnerability Details

GHSA

GHSA-xmgq-3783-qgm4: Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architect↗2025-11-22

▶

OSV

CVE-2025-12888: Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architect↗2025-11-21

▶

📋Vendor Advisories

Microsoft

Constant Time Issue with Xtensa-based ESP32 and X22519↗2025-11-11

▶

Debian

CVE-2025-12888: wolfssl - Vulnerability in X25519 constant-time cryptographic implementations due to timin...↗2025

▶

Microsoft

The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles attempts to access disabled memory space.↗2020-05-12

▶