VYPR
Unrated severityNVD Advisory· Published Sep 18, 2019· Updated Sep 16, 2024

CVE-2019-3739

CVE-2019-3739

Description

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to Information Exposure Through Timing Discrepancy vulnerabilities during ECDSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover ECDSA keys.

Affected products

2
  • Dell/Bsafe Crypto Jllm-fuzzy2 versions
    <6.2.5+ 1 more
    • (no CPE)range: <6.2.5
    • (no CPE)range: prior to 6.2.5

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.