Vulnerabilities

CVE-2025-9071

by Fred · 29/08/2025

Erroneously using an all-zero seed for RSA-OEAP padding instead of the generated random bytes, in Oberon microsystems AG’s Oberon PSA Crypto library in all versions up to 1.5.1, results in deterministic RSA and thus in a loss of confidentiality for guessable messages, recognition of repeated messages, and loss of security proofs.

More information : https://www.oberon.ch/security-advisories/cve-2025-9071/

Similar

Tags: Cybersecurity Alert