DEBIAN-CVE-2015-3193

DEBIAN-CVE-2015-3193 PUBLISHED CVSS 7.5 HIGH

The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key information via an attack against use of a (1) Diffie-Hellman (DH) or (2) Diffie-Hellman Ephemeral (DHE) ciphersuite.

Risk Scores

CVSS v3.1

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products

Vendor	Product	Versions
Debian:14	openssl	0, 0, 0
Debian:12	openssl	0, 0, 0
Debian:11	openssl	0, 0, 0
Debian:13	openssl	0, 0, 0

Timeline

Dec 6, 2015 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2015-3193 advisory

Open in Interactive Console →