CVE-2017-5681

2017-03-0718:59:00

Google

osv.dev

AI Score

6.8

Confidence

High

EPSS

0.004

Percentile

74.7%

JSON

The RSA-CRT implementation in the Intel QuickAssist Technology (QAT) Engine for OpenSSL versions prior to 0.5.19 may allow remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack.

References

security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00071&languageid=en-fr