CVE Database · CVE-2016-7056
CVSS v3.1
N/A
EPSS
0.59%
Published
Sep 10, 2018
Modified
Nov 20, 2024
Public PoC / Exploit (1)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
A timing attack flaw was found in OpenSSL 1.0.1u and before that could allow a malicious user with local access to recover ECDSA P-256 private keys.
Weaknesses (CWE)
Affected Products (7)
References (20)
