Description
Padding oracle attack vulnerability in Oberon microsystem AG’s Oberon PSA Crypto library in all versions since 1.0.0 and prior to 1.5.1 allows an attacker to recover plaintexts via timing measurements of AES-CBC PKCS#7 decrypt operations.
Problem types
CWE-208 Observable Timing Discrepancy
CWE-327 Use of a Broken or Risky Cryptographic Algorithm
Product status
1.0.0
References
www.oberon.ch/security-advisories/cve-2025-7383/