VYPR

Oberon PSA Crypto

by Oberon microsystems AG

CVEs (2)

  • CVE-2025-7383MedAug 29, 2025
    risk 0.38cvss epss 0.00

    Padding oracle attack vulnerability in Oberon microsystem AG’s Oberon PSA Crypto library in all versions since 1.0.0 and prior to 1.5.1 allows an attacker to recover plaintexts via timing measurements of AES-CBC PKCS#7 decrypt operations.

  • CVE-2025-9071LowAug 29, 2025
    risk 0.15cvss epss 0.00

    Erroneously using an all-zero seed for RSA-OEAP padding instead of the generated random bytes, in Oberon microsystems AG’s Oberon PSA Crypto library in all versions up to 1.5.1, results in deterministic RSA and thus in a loss of confidentiality for guessable messages,…