Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
MySQL Use of a Broken or Risky Cryptographic Algorithm Vulnerability - CVE-2018-0735 - Vulnerability Database
MySQL

MySQL Use of a Broken or Risky Cryptographic Algorithm Vulnerability - CVE-2018-0735

Medium
Reference: CVE-2018-0735
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-0735
Title: MySQL Use of a Broken or Risky Cryptographic Algorithm Vulnerability
Overview:

The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.1.1a (Affected 1.1.1).