CVE-2015-0837
MEDIUMGnuPG < 1.4.19 and Libgcrypt < 1.6.3 - Information Disclosure via Modular Exponentiation Timing Attack
Title source: llmDescription
The mpi_powm function in Libgcrypt before 1.6.3 and GnuPG before 1.4.19 allows attackers to obtain sensitive information by leveraging timing differences when accessing a pre-computed table during modular exponentiation, related to a "Last-Level Cache Side-Channel Attack."
References (5)
Core 5
Core References
Third Party Advisory x_refsource_misc
http://www.debian.org/security/2015/dsa-3184
Third Party Advisory x_refsource_misc
http://www.debian.org/security/2015/dsa-3185
Mailing List, Vendor Advisory x_refsource_confirm
https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000363.html
Mailing List, Vendor Advisory x_refsource_confirm
https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000364.html
Third Party Advisory x_refsource_misc
https://ieeexplore.ieee.org/document/7163050
Scores
CVSS v3
5.9
EPSS
0.0195
EPSS Percentile
77.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-203
Status
published
Products (4)
debian/debian_linux
7.0
debian/debian_linux
8.0
gnupg/gnupg
< 1.4.19
gnupg/libgcrypt
< 1.6.3
Published
Nov 29, 2019
Tracked Since
Feb 18, 2026