Power Analysis Vulnerability in micro-ecc Library 1.0 Allows Extraction of Private ECC Key

Power Analysis Vulnerability in micro-ecc Library 1.0 Allows Extraction of Private ECC Key

CVE-2020-27209 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

The ECDSA operation of the micro-ecc library 1.0 is vulnerable to simple power analysis attacks which allows an adversary to extract the private ECC key.

Learn more about our Web Application Penetration Testing UK.