Skip to main content

Key Management Errors

CVE-2016-6886

Severity High
Score 7.5/10

Summary

The pstm_reverse function in MatrixSSL before 3.8.4 allows remote attackers to cause a denial of service (invalid memory read and crash) via a (1) zero value or (2) the key's modulus for the secret key during RSA key exchange.

  • LOW
  • NETWORK
  • NONE
  • UNCHANGED
  • NONE
  • NONE
  • NONE
  • HIGH

CWE-320 - Key Management Errors

Weaknesses in this category are related to errors in the management of cryptographic keys.

References

Advisory Timeline

  • Published