How severe is CVE-2018-20187?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.9 out of 10.

What type of vulnerability is CVE-2018-20187?

This is classified as CWE-320, which is a common weakness in software security.

CVE-2018-20187 - MEDIUM Severity | CVSS 5.9

Vulnerability Description

A side-channel issue was discovered in Botan before 2.9.0. An attacker capable of precisely measuring the time taken for ECC key generation may be able to derive information about the high bits of the secret key, as the function to derive the public point from the secret scalar uses an unblinded Montgomery ladder whose loop iteration count depends on the bitlength of the secret. This issue affects only key generation, not ECDSA signatures or ECDH key agreement.

Related Vulnerabilities

CVE-2016-9963

MEDIUM

CVSS:5.9(Medium)

Exim before 4.87.1 might allow remote attackers to obtain the private DKIM signing key via vectors related to log files and bounce messages.

CWE-3202016

CVE-2016-10011

MEDIUM

CVSS:5.5(Medium)

authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging a...

CWE-3202016

CVE-2017-18319

MEDIUM

CVSS:5.5(Medium)

Information leak in UIM API debug messages in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9645, MDM9650, MDM9655, MSM8909W, SD 210/SD 212/SD 205,...

CWE-3202017

CVE-2017-18323

MEDIUM

CVSS:5.5(Medium)

Cryptographic key material leaked in TDSCDMA RRC debug messages in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9615, MDM9635M, MDM9640, MDM9645, MDM96...

CWE-3202017

CVE-2020-1688

MEDIUM

CVSS:6.5(Medium)

On Juniper Networks SRX Series and NFX Series, a local authenticated user with access to the shell may obtain the Web API service private key that is used to provide encrypted communication between th...

CWE-3202020

CVE-2016-2217

MEDIUM

CVSS:5.3(Medium)

The OpenSSL address implementation in Socat 1.7.3.0 and 2.0.0-b8 does not use a prime number for the DH, which makes it easier for remote attackers to obtain the shared secret.

CWE-3202016