CVE-2017-1000413

Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable a timing attack in the Montgomery parts of libMPA in OP-TEE resulting in a compromised private RSA key.
Configurations

Configuration 1 (hide)

cpe:2.3:a:linaro:op-tee:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-01-02 17:29

Updated : 2024-02-04 19:29


NVD link : CVE-2017-1000413

Mitre link : CVE-2017-1000413

CVE.ORG link : CVE-2017-1000413


JSON object : View

Products Affected

linaro

  • op-tee
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor