CVE

CVE-2020-11735

CVE-2020-11735

The private-key operations in ecc.c in wolfSSL before 4.4.0 do not use a constant-time modular inverse when mapping to affine coordinates, aka a "projective coordinates leak."

Source: CVE-2020-11735

Exit mobile version