In Trusted Firmware Mbed TLS 2.24.0, a side-channel vulnerability in base64 PEM file decoding allows system-level (administrator) attackers to obtain information about secret RSA keys via a controlled-channel and side-channel attack on software running in isolated environments that can be single stepped, especially Intel SGX.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | 10 Version 1709 for ARM64-based Systems |
| n/a | n/a | n/a |