Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
DPA Countermeasures Unavailable for Certain Cryptographic Operations on Series 2 Devices
Vulnerability Description
DPA countermeasures are unavailable for ECDH key agreement and EdDSA signing operations on Curve25519 and Curve448 on all Series 2 modules and SoCs due to a lack of hardware and software support. A successful DPA attack may result in exposure of confidential information. The best practice is to use the impacted crypto curves and operations with ephemeral keys to reduce the number of DPA traces that can be collected.
CVSS Information
N/A
Vulnerability Type
CWE-1255
Vulnerability Title
Silicon Series 2 devices 安全漏洞
Vulnerability Description
Silicon Series 2 devices是美国芯科(Silicon)公司的一系列设备。 Silicon Series 2 devices存在安全漏洞,该漏洞源于缺乏DPA对策支持,可能导致机密信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A