cvedb.io
CVE-2017-1000413
MEDIUM · CVSS 5.9
EPSS exploitation probability: 0%
Published 2018-01-02T17:29:00.290 · Last modified 2026-06-17T00:59:07.950

Summary

Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable a timing attack in the Montgomery parts of libMPA in OP-TEE resulting in a compromised private RSA key.

Affected products

linaro — op-tee

Does this affect you?

Add your gear to cvedb and we'll alert you only when linaro ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.