Unrated severityNVD Advisory· Published Sep 18, 2019· Updated Sep 16, 2024
CVE-2019-3739
CVE-2019-3739
Description
RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to Information Exposure Through Timing Discrepancy vulnerabilities during ECDSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover ECDSA keys.
Affected products
2<6.2.5+ 1 more
- (no CPE)range: <6.2.5
- (no CPE)range: prior to 6.2.5
Patches
Vulnerability mechanics
References
7- www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE&mitrex_refsource_MISC
- www.oracle.com//security-alerts/cpujul2021.htmlmitrex_refsource_MISC
- www.oracle.com/security-alerts/cpuApr2021.htmlmitrex_refsource_MISC
- www.oracle.com/security-alerts/cpuapr2022.htmlmitrex_refsource_MISC
- www.oracle.com/security-alerts/cpujul2020.htmlmitrex_refsource_MISC
- www.oracle.com/security-alerts/cpuoct2020.htmlmitrex_refsource_MISC
- www.oracle.com/security-alerts/cpuoct2021.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.