CVE-2020-11713
First published: Sun Apr 12 2020(Updated: )
wolfSSL 4.3.0 has mulmod code in wc_ecc_mulmod_ex in ecc.c that does not properly resist timing side-channel attacks.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| WolfSSL wolfssl | =4.3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this wolfSSL vulnerability?
CVE-2020-11713
What is the severity level of CVE-2020-11713?
The severity level of CVE-2020-11713 is high with a score of 7.5.
What is the affected version of wolfSSL?
The affected version of wolfSSL is 4.3.0.
What is the CWE number for this vulnerability?
The CWE number for this vulnerability is CWE-203.
How can I fix CVE-2020-11713 in wolfSSL?
To fix CVE-2020-11713 in wolfSSL, it is recommended to update to a version higher than 4.3.0.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/remedy
- agent/weakness
- agent/author
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/wolfssl
- canonical/wolfssl wolfssl
- version/wolfssl wolfssl/4.3.0