cvedb.io
CVE-2015-5738
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2016-07-26T17:59:00.137 · Last modified 2026-06-17T00:29:41.180

Summary

The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack.

Affected products

marvell — software_development_kit

Does this affect you?

Add your gear to cvedb and we'll alert you only when marvell ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.