Security Advisory

CVE-2025-12888

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-21 22:50:30
Last updated 2025-12-08 15:51:56
Assigner wolfSSL
State PUBLISHED

Description

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture limitations, specifically with the Xtensa-based ESP32 chips. If targeting Xtensa it is recommended to use the low memory implementations of X25519, which is now turned on as the default for Xtensa.