CVE-2019-16910
Summary
| CVE | CVE-2019-16910 |
|---|---|
| State | PUBLISHED |
| Assigner | mitre |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-09-26 13:15:10 UTC |
| Updated | 2026-06-05 19:38:32 UTC |
| Description | Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled, use an RNG with insufficient entropy for blinding, which might allow an attacker to recover a private key via side-channel attacks if a victim signs the same message many times. (For Mbed TLS, the fix is also available in versions 2.7.12 and 2.16.3.) |
Risk And Classification
Primary CVSS: v3.1 5.3 MEDIUM from [email protected]
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
Problem Types: NVD-CWE-noinfo | n/a
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 3.1 | [email protected] | Primary | 5.3 | MEDIUM | CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N |
| 2.0 | [email protected] | Primary | 2.6 | AV:N/AC:H/Au:N/C:P/I:N/A:N |
CVSS v3.1 Breakdown
Attack Vector
NetworkAttack Complexity
HighPrivileges Required
NoneUser Interaction
RequiredScope
UnchangedConfidentiality
HighIntegrity
NoneAvailability
NoneCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
CVSS v2.0 Breakdown
Access Vector
NetworkAccess Complexity
HighAuthentication
NoneConfidentiality
PartialIntegrity
NoneAvailability
NoneAV:N/AC:H/Au:N/C:P/I:N/A:N
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Arm | Mbed Crypto | All | All | All | All |
| Application | Arm | Mbed Tls | All | All | All | All |
Vendor Declared Affected Products
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| [SECURITY] [DLA 3249-1] mbedtls security update | af854a3a-2127-422b-91ae-364da2661108 | lists.debian.org | Mailing List, Third Party Advisory |
| [SECURITY] Fedora 30 Update: mbedtls-2.16.3-1.fc30 - package-announce - Fedora Mailing-Lists | af854a3a-2127-422b-91ae-364da2661108 | lists.fedoraproject.org | Mailing List, Third Party Advisory |
| Side channel attack on deterministic ECDSA - Tech Updates - Mbed TLS (Previously PolarSSL) | af854a3a-2127-422b-91ae-364da2661108 | tls.mbed.org | Vendor Advisory |
| Merge remote-tracking branch 'upstream-restricted/pr/556' into mbedtl… · ARMmbed/mbedtls@33f66ba · GitHub | af854a3a-2127-422b-91ae-364da2661108 | github.com | Patch |
| [SECURITY] Fedora 31 Update: mbedtls-2.16.3-1.fc31 - package-announce - Fedora Mailing-Lists | af854a3a-2127-422b-91ae-364da2661108 | lists.fedoraproject.org | Mailing List, Third Party Advisory |
| [SECURITY] Fedora 29 Update: mbedtls-2.16.3-1.fc29 - package-announce - Fedora Mailing-Lists | af854a3a-2127-422b-91ae-364da2661108 | lists.fedoraproject.org | Mailing List, Third Party Advisory |
| Merge remote-tracking branch 'upstream-restricted/pr/549' into mbedtl… · ARMmbed/mbedtls@298a43a · GitHub | af854a3a-2127-422b-91ae-364da2661108 | github.com | Patch |
| [SECURITY] Fedora 30 Update: mbedtls-2.16.3-1.fc30 - package-announce - Fedora Mailing-Lists | MITRE | lists.fedoraproject.org | |
| [SECURITY] Fedora 31 Update: mbedtls-2.16.3-1.fc31 - package-announce - Fedora Mailing-Lists | MITRE | lists.fedoraproject.org | |
| [SECURITY] Fedora 29 Update: mbedtls-2.16.3-1.fc29 - package-announce - Fedora Mailing-Lists | MITRE | lists.fedoraproject.org | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.