CVE-2025-9231 | OpenSSL up to 3.2.5/3.3.4/3.4.2/3.5.3 on 64-bit ARM SM2 covert timing channel

September 30, 2025 Yanac

A vulnerability described as critical has been identified in OpenSSL up to 3.2.5/3.3.4/3.4.2/3.5.3 on 64-bit ARM. This affects an unknown part of the component SM2 Handler. The manipulation results in covert timing channel.

This vulnerability is cataloged as CVE-2025-9231. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More