Arm Mbed Crypto 2.0.0 D0

CPE Details

Arm Mbed Crypto 2.0.0 D0
arm
mbed_crypto
2.0.0
2020-04-01
12h25 +00:00
2020-04-01
12h25 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:arm:mbed_crypto:2.0.0:d0:*:*:*:*:*:*

Informations

Vendor

arm

Product

mbed_crypto

Version

2.0.0

Update

d0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-28960 2024-03-28 23h00 +00:00 An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and Mbed Crypto. The PSA Crypto API mishandles shared memory.
8.2
High
CVE-2020-10941 2020-03-23 23h00 +00:00 Arm Mbed TLS before 2.16.5 allows attackers to obtain sensitive information (an RSA private key) by measuring cache usage during an import.
5.9
Medium
CVE-2019-18222 2020-01-22 23h00 +00:00 The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks.
4.7
Medium
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.