### [CVE-2017-13099](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13099)
![](https://img.shields.io/static/v1?label=Product&message=wolfSSL&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-203&color=brighgreen)

### Description

wolfSSL prior to version 3.12.2 provides a weak Bleichenbacher oracle when any TLS cipher suite using RSA key exchange is negotiated. An attacker can recover the private key from a vulnerable wolfSSL application. This vulnerability is referred to as "ROBOT."

### POC

#### Reference
- http://www.kb.cert.org/vuls/id/144389
- https://robotattack.org/

#### Github
No PoCs found on GitHub currently.