IDCVSSSummaryLast (major) updatePublished
CVE-2019-10914 7.5
pubRsaDecryptSignedElementExt in MatrixSSL, as used in Inside Secure TLS Toolkit, through 4.0.2 Open has a stack-based buffer overflow during X.509 certificate verification because of missing validation in psRsaDecryptPubExt in crypto/pubkey/rsa_pub.
08-04-2019 - 10:29 08-04-2019 - 10:29
CVE-2018-12439 1.9
MatrixSSL through 3.9.5 Open allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual m
14-06-2018 - 22:29 14-06-2018 - 22:29
CVE-2018-12438 1.9
The Elliptic Curve Cryptography library (aka sunec or libsunec) allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the loc
14-06-2018 - 22:29 14-06-2018 - 22:29
CVE-2018-12437 1.9
LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual mac
14-06-2018 - 22:29 14-06-2018 - 22:29
CVE-2018-12433 1.9
** DISPUTED ** cryptlib through 3.4.4 allows a memory-cache side-channel attack on DSA and ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover a key, the attacker needs access to either the local machine or a different
14-06-2018 - 22:29 14-06-2018 - 22:29
CVE-2017-1000417 5.0
MatrixSSL version 3.7.2 adopts a collision-prone OID comparison logic resulting in possible spoofing of OIDs (e.g. in ExtKeyUsage extension) on X.509 certificates.
22-01-2018 - 18:29 22-01-2018 - 18:29
CVE-2017-1000415 4.3
MatrixSSL version 3.7.2 has an incorrect UTCTime date range validation in its X.509 certificate validation process resulting in some certificates have their expiration (beginning) year extended (delayed) by 100 years.
09-01-2018 - 15:29 09-01-2018 - 15:29
CVE-2017-2782 6.4
An integer overflow vulnerability exists in the X509 certificate parsing functionality of InsideSecure MatrixSSL 3.8.7b. A specially crafted x509 certificate can cause a length counter to overflow, leading to a controlled out of bounds copy operation
22-06-2017 - 17:29 22-06-2017 - 17:29
CVE-2017-2781 7.5
An exploitable heap buffer overflow vulnerability exists in the X509 certificate parsing functionality of InsideSecure MatrixSSL 3.8.7b. A specially crafted x509 certificate can cause a buffer overflow on the heap resulting in remote code execution.
22-06-2017 - 17:29 22-06-2017 - 17:29
CVE-2017-2780 7.5
An exploitable heap buffer overflow vulnerability exists in the X509 certificate parsing functionality of InsideSecure MatrixSSL 3.8.7b. A specially crafted x509 certificate can cause a buffer overflow on the heap resulting in remote code execution.
22-06-2017 - 17:29 22-06-2017 - 17:29
CVE-2016-6882 4.3
MatrixSSL before 3.8.7, when the DHE_RSA based cipher suite is supported, makes it easier for remote attackers to obtain RSA private key information by conducting a Lenstra side-channel attack.
07-03-2017 - 20:24 03-03-2017 - 11:59
CVE-2016-6883 4.3
MatrixSSL before 3.8.3 configured with RSA Cipher Suites allows remote attackers to obtain sensitive information via a Bleichenbacher variant attack.
07-03-2017 - 20:06 03-03-2017 - 11:59
CVE-2016-6884 4.3
TLS cipher suites with CBC mode in TLS 1.1 and 1.2 in MatrixSSL before 3.8.3 allow remote attackers to cause a denial of service (out-of-bounds read) via a crafted message.
07-03-2017 - 09:17 03-03-2017 - 11:59
CVE-2016-8671 4.3
The pstm_exptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via unspecified vectors. NOTE: this vulnerability exists because of an incomplete
18-01-2017 - 21:59 13-01-2017 - 11:59
CVE-2016-6887 4.3
The pstm_exptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via a CRT attack.
18-01-2017 - 21:59 13-01-2017 - 11:59
CVE-2016-6886 5.0
The pstm_reverse function in MatrixSSL before 3.8.4 allows remote attackers to cause a denial of service (invalid memory read and crash) via a (1) zero value or (2) the key's modulus for the secret key during RSA key exchange.
17-01-2017 - 21:59 13-01-2017 - 11:59
CVE-2016-6885 5.0
The pstm_exptmod function in MatrixSSL before 3.8.4 allows remote attackers to cause a denial of service (invalid free and crash) via a base zero value for the modular exponentiation.
17-01-2017 - 13:23 13-01-2017 - 11:59
CVE-2016-6892 5.0
The x509FreeExtensions function in MatrixSSL before 3.8.6 allows remote attackers to cause a denial of service (free of unallocated memory) via a crafted X.509 certificate.
06-01-2017 - 10:24 05-01-2017 - 17:59
CVE-2016-6891 5.0
MatrixSSL before 3.8.6 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted ASN.1 Bit Field primitive in an X.509 certificate.
06-01-2017 - 10:14 05-01-2017 - 17:59
CVE-2016-6890 10.0
Heap-based buffer overflow in MatrixSSL before 3.8.6 allows remote attackers to execute arbitrary code via a crafted Subject Alt Name in an X.509 certificate.
06-01-2017 - 10:14 05-01-2017 - 17:59
Back to Top Mark selected
Back to Top