CVE-2025-7396

Name
CVE-2025-7396
Description
In wolfSSL release 5.8.2 blinding support is turned on by default for Curve25519 in applicable builds. The blinding configure option is only for the base C implementation of Curve25519. It is not needed, or available with; ARM assembly builds, Intel assembly builds, and the small Curve25519 feature. While the side-channel attack on extracting a private key would be very difficult to execute in practice, enabling blinding provides an additional layer of protection for devices that may be more susceptible to physical access or side-channel observation.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
facts@wolfssl.com https://github.com/wolfSSL/wolfssl/blob/master/ChangeLog.md#wolfssl-release-582-july-17-2025

Match rules

CPE URI Source package Min version Max version
wolfssl == 5.8.0; 0 == 5.8.0; 0
cpe:2.3:a:wolfssl:wolfssl:5.8.2:*:*:*:*:*:*:* wolfssl == None == 5.8.2

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
wolfssl edge-community 5.8.2-r1 None possibly vulnerable
wolfssl edge-community 5.8.2-r0 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable
wolfssl 3.23-community 5.8.2-r0 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable