Andrea Pellegrini

**Name of the Vulnerable Software and Affected Versions** OpenSSL version 0.9.8i **Description** The issue concerns a Fixed Width Exponentiation (FWE) algorithm used in certain signature calculations. It does not verify the signature before providing it to a caller. This makes it easier for physically proximate attackers to determine the private key via a modified supply voltage for the microprocessor, related to a fault-based attack. **Recommendations** For OpenSSL version 0.9.8i, consider applying configuration changes or workarounds to minimize the risk of exploitation, such as restricting physical access to the system to prevent modified supply voltage attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.