CVE-2019-19962

CVE-2019-19962

EPSS 0.9%

wolfSSL before 4.3.0 mishandles calls to wc_SignatureGenerateHash, leading to fault injection in RSA cryptography.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/wolfSSL/wolfssl/commit/23878512c65834d12811b1107d19a001478eca5d https://github.com/wolfSSL/wolfssl/releases/tag/v4.3.0-stable