Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OpenSSL 0.9.8i on the Gaisler Research LEON3 SoC on the Xilinx Virtex-II Pro FPGA uses a Fixed Width Exponentiation (FWE) algorithm for certain signature calculations, and does not verify the signature before providing it to a caller, which makes it easier for physically proximate attackers to determine the private key via a modified supply voltage for the microprocessor, related to a "fault-based attack."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Openssl Xilinx Virtex-II Pro FPGA 'Gaisler Research LEON3'openssl FWE算法设计漏洞
Vulnerability Description
Xilinx Virtex-II Pro FPGA的Gaisler Research LEON3 SoC的OpenSSL 0.9.8i使用了Fixed Width Expoentiation (FEW)算法进行某些签名计算,在把签名提供给调用者前并不进行验证,物理近似攻击者可通过修改微处理器的供电电压,很轻易地确定私钥。
CVSS Information
N/A
Vulnerability Type
N/A