Vulnerabilities > CVE-2020-11713 - Information Exposure Through Discrepancy vulnerability in Wolfssl 4.3.0

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
wolfssl
CWE-203
NVD
Published: 2020-04-12
Updated: 2022-01-01

Summary

wolfSSL 4.3.0 has mulmod code in wc_ecc_mulmod_ex in ecc.c that does not properly resist timing side-channel attacks.

Vulnerable Configurations

Part Description Count
Application
Wolfssl
1

Common Weakness Enumeration (CWE)

References