Primary

Context

wolfSSL RISC-V RV32I Architectures Timing Side-Channel Vulnerability in 64-Bit Multiplication

Vulnerability

A timing side-channel vulnerability has been identified in wolfSSL version 5.8.4 on RISC-V RV32I architectures. The issue arises because the software implementation of 64-bit multiplication lacks constant-time execution. Instead, the compiler-inserted __muldi3 subroutine operates in variable time, depending on the values of the operands. This inconsistency affects several special math functions, such as sp_256_mul_9 and sp_256_sqr_9, potentially allowing an attacker to exploit the timing variations and extract sensitive cryptographic information.

Impact

Exploitation of this vulnerability could lead to a timing side-channel attack, where an adversary could gain access to sensitive cryptographic data by analyzing the time variations in the multiplication operations.

Remediation

Users can update to wolfSSL version 5.8.5 or later, where this vulnerability has been addressed.

Added: Mar 19, 2026, 8:20 PM

Updated: Mar 19, 2026, 8:20 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

5.0

remediation

0.0

relevance

4.1

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

5.0

remediation

0.0

relevance

4.1

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

wolfSSL RISC-V RV32I Architectures Timing Side-Channel Vulnerability in 64-Bit Multiplication

Vulnerability

Impact

Remediation

Affected Products

wolfSSL

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating