CVE-2025-9071

Vulnerability Description

Erroneously using an all-zero seed for RSA-OEAP padding instead of the generated random bytes, in Oberon microsystems AG’s Oberon PSA Crypto library in all versions up to 1.5.1, results in deterministic RSA and thus in a loss of confidentiality for guessable messages, recognition of repeated messages, and loss of security proofs.

Related Weaknesses (CWE)

CWE-780

References

https://www.oberon.ch/security-advisories/cve-2025-9071/

FAQ

What is CVE-2025-9071?

CVE-2025-9071 is a documented vulnerability. Erroneously using an all-zero seed for RSA-OEAP padding instead of the generated random bytes, in Oberon microsystems AG’s Oberon PSA Crypto library in all versions up to 1.5.1, results in determinist...

How severe is CVE-2025-9071?

CVSS scoring is not yet available for CVE-2025-9071. Check NVD for updates.

Is there a patch for CVE-2025-9071?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.