CVE-2016-6887
MEDIUMMatrixSSL < 3.8.6 - Exposure of Sensitive Information via CRT Attack on pstm_exptmod
Title source: llmDescription
The pstm_exptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via a CRT attack.
References (2)
Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
http://www.matrixssl.org/blog/releases/matrixssl_3_8_4
Third Party Advisory x_refsource_misc
https://blog.fuzzing-project.org/51-Fun-with-Bignums-Crashing-MatrixSSL-and-more.html
Scores
CVSS v3
5.9
EPSS
0.0115
EPSS Percentile
62.9%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (1)
matrixssl/matrixssl
< 3.8.6
Published
Jan 13, 2017
Tracked Since
Feb 18, 2026