Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The RSA-CRT implementation in the Intel QuickAssist Technology (QAT) Engine for OpenSSL versions prior to 0.5.19 may allow remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenSSL Intel QuickAssist Technology Engine 安全漏洞
Vulnerability Description
OpenSSL是OpenSSL团队开发的一个开源的能够实现安全套接层(SSL v2/v3)和安全传输层(TLS v1)协议的通用加密库,它支持多种加密算法,包括对称密码、哈希算法、安全散列算法等。Intel QuickAssist Technology(QAT)Engine是其中的一个用于提高数据中心性能的引擎。 OpenSSL 0.5.19之前的版本中的Intel QAT Engine的RSA-CRT实现过程存在安全漏洞。远程攻击者可利用该漏洞获取私有的RSA密钥。
CVSS Information
N/A
Vulnerability Type
N/A