CVE-2020-11713

High

wolfSSL 4.3.0 has mulmod code in wc_ecc_mulmod_ex in ecc.c that does not properly resist timing side-channel attacks.

mitre·CWE-203·Published 2020-04-12

CVSS

7.5

EPSS

0.02

KEV

Exploits

cve.orgen

117 chars

wolfSSL 4.3.0 has mulmod code in wc_ecc_mulmod_ex in ecc.c that does not properly resist timing side-channel attacks.

NVDen

117 chars

wolfSSL 4.3.0 has mulmod code in wc_ecc_mulmod_ex in ecc.c that does not properly resist timing side-channel attacks.

NVDes

174 chars

wolfSSL versión 4.3.0, presenta código mulmod en la función wc_ecc_mulmod_ex en el archivo ecc.c que no resiste apropiadamente los ataques de sincronización de canal lateral.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N
3.1	Primary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N