Severity: Unknown
Affected Package: openssl
Summary: timing side-channel in ECDSA signature computation
A timing signal of around 300 nanoseconds occurs when the top word of the inverted ECDSA nonce value is zero, which can happen with significant probability for some curves (notably NIST P-521). A local or low-latency network attacker may be able to recover private key information. Severity: Low (OpenSSL).
No specific recommendations provided.
Aliases: CVE-2024-13176
Published: June 11, 2026
Last Modified: June 11, 2026