CVE-2025-12888

Published: Nov 21, 2025

Modified: Dec 8, 2025

PUBLISHED

Description

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture limitations, specifically with the Xtensa-based ESP32 chips. If targeting Xtensa it is recommended to use the low memory implementations of X25519, which is now turned on as the default for Xtensa.

Vendor	Product	Versions
wolfSSL	wolfSSL	affected `0 - < 5.8.4`

Weaknesses (CWE)

CWE-203

References

https://https://github.com/wolfSSL/wolfssl/pull/9275

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-12888

Description

Affected Products

Weaknesses (CWE)

References