CVE-2006-1115

Low

2.6/10

Summary

nCipher HSM before 2.22.6, when generating a Diffie-Hellman public/private key pair without any specified DiscreteLogGroup parameters, chooses random parameters that could allow an attacker to crack the private key in significantly less time than a brute force attack.

Access Complexity: HIGH
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published Mar 09, 2006

CVE-2006-1115

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS