CVE-2017-5681

2017-03-0718:00:00

intel

www.cve.org

AI Score

7.4

Confidence

High

EPSS

0.004

Percentile

74.7%

JSON

The RSA-CRT implementation in the Intel QuickAssist Technology (QAT) Engine for OpenSSL versions prior to 0.5.19 may allow remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack.

CNA Affected

[
  {
    "product": "Intel Quick Assist Technology",
    "vendor": "Intel",
    "versions": [
      {
        "status": "affected",
        "version": "Before v0.5.19"
      }
    ]
  }
]

References

security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00071&languageid=en-fr