Severity

Medium

Analysis Summary

CVE-2021-4160

OpenSSL could provide weaker than expected security, caused by a carry propagation flaw in the MIPS32 and MIPS64 squaring procedure. An attacker could exploit this vulnerability to launch further attacks on the system.

Impact

• Unauthorized Access

Affected Vendors

OpenSSL

Affected Products

• OpenSSL OpenSSL 1.1.1
• OpenSSL OpenSSL 1.0.2
• OpenSSL OpenSSL 3.0.0
• OpenSSL OpenSSL 1.0.2zb

Remediation

Refer to OpenSSL Security Advisory for patch, upgrade, or suggested workaround information.