Vulnerabilities > Wolfssl

DATE	CVE	VULNERABILITY TITLE	RISK
2016-12-13	CVE-2016-7440	The C software implementation of AES Encryption and Decryption in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover AES keys by leveraging cache-bank timing differences. local low complexity mariadb oracle wolfssl debian	5.5
2016-12-13	CVE-2016-7439	Cryptographic Issues vulnerability in Wolfssl The C software implementation of RSA in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences. local low complexity wolfssl CWE-310	5.5
2016-12-13	CVE-2016-7438	Cryptographic Issues vulnerability in Wolfssl The C software implementation of ECC in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences. local low complexity wolfssl CWE-310	5.5
2016-01-22	CVE-2015-7744	wolfSSL (formerly CyaSSL) before 3.6.8 does not properly handle faults associated with the Chinese Remainder Theorem (CRT) process when allowing ephemeral key exchange without low memory optimizations on a server, which makes it easier for remote attackers to obtain private RSA keys by capturing TLS handshakes, aka a Lenstra attack. network high complexity wolfssl opensuse mariadb	5.9
2016-01-22	CVE-2015-6925	Resource Management Errors vulnerability in Wolfssl wolfSSL (formerly CyaSSL) before 3.6.8 allows remote attackers to cause a denial of service (resource consumption or traffic amplification) via a crafted DTLS cookie in a ClientHello message. network low complexity wolfssl CWE-399	7.5

Vulnerabilities > Wolfssl {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Wolfssl"}]}

Vulnerabilities > Wolfssl