CVE & CISA-KEV Catalog

CVE-2025-9231

MEDIUMEPSS 81th pctl
6.5
CVSS v3
NVD

Description

Issue summary: A timing side-channel which could potentially allow remote recovery of the private key exists in the SM2 algorithm implementation on 64 bit ARM platforms. Impact summary: A timing side-channel in SM2 signature computations on 64 bit ARM platforms could allow recovering the private key by an attacker.. While remote key recovery over a network was not attempted by the reporter, timing measurements revealed a timing signal which may allow such an attack. OpenSSL does not directly support certificates with SM2 keys in TLS, and so this CVE is not relevant in most TLS contexts. However, given that it is possible to add support for such certificates via a custom provider, coupled with the fact that in such a custom provider context the private key may be recoverable via remote timing measurements, we consider this to be a Moderate severity issue. The FIPS modules in 3.5, 3.4, 3.3, 3.2, 3.1 and 3.0 are not affected by this issue, as SM2 is not an approved algorithm.

How to fix

Remediation Available
opensslDebian
Fixed in:3.5.1-1+deb13u1CVE-2025-9231
Fixed in:3.5.4-1CVE-2025-9231
libssl1.0.0Ubuntu
Fixed in:1.0.1f-1ubuntu2.27+esm11USN-7786-1
Fixed in:1.0.2g-1ubuntu4.20+esm13USN-7786-1
Fixed in:1.0.2n-1ubuntu5.13+esm2USN-7786-1
libssl1.1Ubuntu
Fixed in:1.1.1-1ubuntu2.1~18.04.23+esm6USN-7786-1
Fixed in:1.1.1f-1ubuntu2.24+esm1USN-7786-1
libssl3Ubuntu
Fixed in:3.0.2-0ubuntu1.20USN-7786-1
libssl3t64Ubuntu
Fixed in:3.0.13-0ubuntu3.6USN-7786-1
opensslUbuntu
Fixed in:1.0.1f-1ubuntu2.27+esm11USN-7786-1
Fixed in:1.0.2g-1ubuntu4.20+esm13USN-7786-1
Fixed in:1.1.1-1ubuntu2.1~18.04.23+esm6USN-7786-1
Fixed in:1.1.1f-1ubuntu2.24+esm1USN-7786-1
Fixed in:3.0.2-0ubuntu1.20USN-7786-1
Fixed in:3.0.13-0ubuntu3.6USN-7786-1
openssl1.0Ubuntu
Fixed in:1.0.2n-1ubuntu5.13+esm2USN-7786-1

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityLow
IntegrityNone
AvailabilityLow

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Exploit Intelligence

2.23%probability of exploitation in 30 days
81stpercentile

Elevated risk: more likely to be exploited than 81% of all known CVEs.

References

Embed a live status badge for CVE-2025-9231
CVE-2025-9231 severity badge

Markdown

[![CVE-2025-9231](https://tridentstack.com/cve/badge/CVE-2025-9231.svg)](https://tridentstack.com/cve/CVE-2025-9231)

HTML

<a href="https://tridentstack.com/cve/CVE-2025-9231"><img src="https://tridentstack.com/cve/badge/CVE-2025-9231.svg" alt="CVE-2025-9231"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-06-02.