CVE
CVE-2018-16869
| CVE ID |
CVE-2018-16869
|
|---|---|
| CVSS Score |
5.7
|
| Operating System | |
| Affected Versions | |
| Patched Versions |
nettle-2.7.1-9_ol001.el7_9
|
| Patch Date |
|
| Last Updated Date | |
| Vector String |
Additional Information
OL CVE Issue Summary :
A Bleichenbacher type side-channel based padding oracle attack was found in the way nettle handles endian conversion of RSA decrypted PKCS#1 v1.5 data. An attacker who is able to run a process on the same physical core as the victim process could use this flaw extract plain text or, in some cases, downgrade any TLS connections to a vulnerable server.