CVE-2024-31510: liboqs: leakable Secret Key of ML-DSA via Rowhammer

Severity: Critical

CVSS Score: 9.8

An issue in Open Quantum Safe liboqs v.10.0 allows a remote attacker to escalate privileges via the crypto_sign_signature parameter in the /pqcrystals-dilithium-standard_ml-dsa-44-ipd_avx2/sign.c component.