CVE-2022-23003 – When computing a shared secret or point multiplication on the NIST P-256 curve that result …

29 July 2022

Vuln ID: CVE-2022-23003

Published: 2022-07-29 19:15:08Z

Description: When computing a shared secret or point multiplication on the NIST P-256 curve that results in an X coordinate of zero, the resulting output is not properly reduced modulo the P-256 field prime and is invalid. The resulting output may cause an error when used in other operations. This may be leveraged by an attacker to cause an error scenario or incorrect choice of session key in applications which use the library, resulting in a limited denial of service for an individual user. The scope of impact cannot extend to other components.

Source: NVD.NIST.GOV

Date:

29 July 2022

Categorie(s):

NVD

Tag(s):

NVD

Check Point delivers strong quarterly revenue growth but stock drops26 April 2024
Rubrik IPO signals potential cybersecurity-led tech market revival25 April 2024
Foreign states targeting sensitive research at UK universities, MI5 warns25 April 2024
Cops cuff man for allegedly framing colleague with AI-generated hate speech clip25 April 2024
After a 19-month saga, Broadcom finally patches Brocade SANnav bugs25 April 2024