VYPR
Unrated severityNVD Advisory· Published Sep 2, 2020· Updated Aug 4, 2024

CVE-2020-16150

CVE-2020-16150

Description

A Lucky 13 timing side channel in mbedtls_ssl_decrypt_buf in library/ssl_msg.c in Trusted Firmware Mbed TLS through 2.23.0 allows an attacker to recover secret key information. This affects CBC mode because of a computed time difference based on a padding length.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Mbed TLS/Mbed TLSdescription
  • Arm/MbedTLSllm-fuzzy
    Range: <=2.23.0

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.