Vulnerability Details CVE-2020-17478
ECDSA/EC/Point.pm in Crypt::Perl before 0.33 does not properly consider timing attacks against the EC point multiplication algorithm.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.1%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2020-17478
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.0.31
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.01
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.02
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.021
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.022
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.032
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.11
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.12
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.13
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.15
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.16
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.17
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.18
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.19
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.20
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.22
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.23
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.26
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.30
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.31
-
cpe:2.3:a:p5-crypt-perl_project:p5-crypt-perl:0.32