Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability - CVE-2018-0734 - Vulnerability Database
OpenSSL

OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability - CVE-2018-0734

Medium
Reference: CVE-2018-0734
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-0734
Title: OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability
Overview:

The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).