Side-channel Vulnerability in Trusted Firmware Mbed TLS Affecting RSA Key Security
CVE-2021-24119
4.9MEDIUM
What is CVE-2021-24119?
A side-channel vulnerability in Trusted Firmware Mbed TLS version 2.24.0 allows system-level attackers to extract sensitive information from isolated environments. By leveraging controlled and side-channel attacks, attackers can potentially obtain secret RSA key data, especially when software runs in environments using Intel SGX. This poses a risk to the integrity and confidentiality of cryptographic operations, making it essential for system administrators to address and mitigate this vulnerability promptly.