2 results (0.001 seconds)

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0

Improper buffer restrictions in the Intel(R) QAT Engine for OpenSSL before version 0.6.16 may allow a privileged user to potentially enable escalation of privilege via network access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00798.html • CWE-92: DEPRECATED: Improper Sanitization of Custom Special Characters CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

The RSA-CRT implementation in the Intel QuickAssist Technology (QAT) Engine for OpenSSL versions prior to 0.5.19 may allow remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack. La implementación RSA-CRT en el motor Intel QuickAssist Technology (QAT) para OpenSSL versiones anteriores a 0.5.19 puede permitir a atacantes remotos obtener claves RSA privadas mediante la realización de un ataque de canal lateral Lenstra. • https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00071&languageid=en-fr •