CVE-2017-13095

The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property (IP), as well as the management of access rights for such IP, including modification of a license-deny response to a license grant. The methods are flawed and, in the most egregious cases, enable attack vectors that allow recovery of the entire underlying plaintext IP. Implementations of IEEE P1735 may be weak to cryptographic attacks that allow an attacker to obtain plaintext intellectual property without the key, among other impacts.
References
Link Resource
http://www.securityfocus.com/bid/101699 Third Party Advisory VDB Entry
https://www.kb.cert.org/vuls/id/739007 Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/101699 Third Party Advisory VDB Entry
https://www.kb.cert.org/vuls/id/739007 Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

cpe:2.3:o:-:-:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:10

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/101699 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/101699 - Third Party Advisory, VDB Entry
References () https://www.kb.cert.org/vuls/id/739007 - Third Party Advisory, US Government Resource () https://www.kb.cert.org/vuls/id/739007 - Third Party Advisory, US Government Resource

Information

Published : 2018-07-13 20:29

Updated : 2024-11-21 03:10


NVD link : CVE-2017-13095

Mitre link : CVE-2017-13095

CVE.ORG link : CVE-2017-13095


JSON object : View

Products Affected

-

  • -
CWE
CWE-310

Cryptographic Issues