Description
The OpenSSL RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2b-1.0.2o).
Remediation
References
Related Vulnerabilities
WordPress Plugin IgniteUp-Coming Soon and Maintenance Mode Multiple Vulnerabilities (3.4)
WordPress Plugin Testimonial Slider SQL Injection (1.2.4)
WordPress Plugin Conditional Marketing Mailer for WooCommerce Unspecified Vulnerability (1.6)
WordPress Plugin Swiss Toolkit For WP Security Bypass (1.0.7)
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-9276)