Description
The design of Advanced Encryption Standard (AES), aka Rijndael, allows remote attackers to recover AES keys via timing attacks on S-box lookups, which are difficult to perform in constant time in AES implementations.
Remediation
References
Related Vulnerabilities
WordPress Plugin My Page Order Cross-Site Scripting (4.3)
WordPress Plugin WP Mail Logging Security Bypass (1.11.2)
Oracle Application Server CVE-2008-3986 Vulnerability (CVE-2008-3986)
WebLogic CVE-2026-46848 Vulnerability (CVE-2026-46848)
Internet Information Services Other Vulnerability (CVE-1999-0448)