VYPR
Medium severity4.7NVD Advisory· Published Jan 17, 2023· Updated Jun 5, 2026

CVE-2021-36647

CVE-2021-36647

Description

Use of a Broken or Risky Cryptographic Algorithm in the function mbedtls_mpi_exp_mod() in lignum.c in Mbed TLS Mbed TLS all versions before 3.0.0, 2.27.0 or 2.16.11 allows attackers with access to precise enough timing and memory access information (typically an untrusted operating system attacking a secure enclave such as SGX or the TrustZone secure world) to recover the private keys used in RSA.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Arm/MbedTLS3 versions
    cpe:2.3:a:arm:mbed_tls:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:arm:mbed_tls:*:*:*:*:*:*:*:*range: <2.16.11
    • cpe:2.3:a:trustedfirmware:mbed_tls:*:*:*:*:*:*:*:*range: >=2.28.0,<3.0.0
    • (no CPE)range: <3.0.0, <2.27.0, <2.16.11
  • Mbed TLS/Mbed TLSdescription

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.