openCryptoki Project openCryptoki 3.11.0

CPE Details

openCryptoki Project openCryptoki 3.11.0
opencryptoki_project
opencryptoki
3.11.0
2022-08-26
10h24 +00:00
2022-08-26
10h58 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:opencryptoki_project:opencryptoki:3.11.0:*:*:*:*:*:*:*

Informations

Vendor

opencryptoki_project

Product

opencryptoki

Version

3.11.0

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-0914 2024-01-31 04h53 +00:00 A timing side-channel vulnerability has been discovered in the opencryptoki package while processing RSA PKCS#1 v1.5 padded ciphertexts. This flaw could potentially enable unauthorized RSA ciphertext decryption or signing, even without access to the corresponding private key.
5.9
Moyen
CVE-2021-3798 2022-08-23 13h48 +00:00 A flaw was found in openCryptoki. The openCryptoki Soft token does not check if an EC key is valid when an EC key is created via C_CreateObject, nor when C_DeriveKey is used with ECDH public data. This may allow a malicious user to extract the private key by performing an invalid curve attack.
5.5
Moyen