Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Yubikey_5_nano_fips_firmware
(Yubico)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 1 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-09-03 | CVE-2024-45678 | Yubico YubiKey 5 Series devices with firmware before 5.7.0 and YubiHSM 2 devices with firmware before 2.4.0 allow an ECDSA secret-key extraction attack (that requires physical access and expensive equipment) in which an electromagnetic side channel is present because of a non-constant-time modular inversion for the Extended Euclidean Algorithm, aka the EUCLEAK issue. Other uses of an Infineon cryptographic library may also be affected. | Security_key_c_nfc_by_yubico_firmware, Security_key_nfc_by_yubico_firmware, Yubihsm_2_fips_firmware, Yubihsm_2_firmware, Yubikey_5_nano_fips_firmware, Yubikey_5_nano_firmware, Yubikey_5_nfc_fips_firmware, Yubikey_5_nfc_firmware, Yubikey_5c_fips_firmware, Yubikey_5c_firmware, Yubikey_5c_nano_fips_firmware, Yubikey_5c_nano_firmware, Yubikey_5c_nfc_fips_firmware, Yubikey_5c_nfc_firmware, Yubikey_5ci_fips_firmware, Yubikey_5ci_firmware, Yubikey_bio_firmware, Yubikey_c_bio_firmware | 4.2 |