A cryptographic cache-based side channel in the RSA implementation in Botan before 1.10.17, and 1.11.x and 2.x before 2.3.0, allows a local attacker to recover information about RSA secret keys, as demonstrated by CacheD. This occurs because an array is indexed with bits derived from a secret key.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-09-26T01:00:00
Updated: 2024-08-05T19:34:39.919Z
Reserved: 2017-09-25T00:00:00
Link: CVE-2017-14737
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-09-26T01:29:03.303
Modified: 2024-11-21T03:13:25.830
Link: CVE-2017-14737
Redhat
No data.