CVE-2023-32690

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

01/06/2023

Last modified:

09/06/2023

Description

libspdm is a sample implementation that follows the DMTF SPDM specifications. Prior to versions 2.3.3 and 3.0, following a successful CAPABILITIES response, a libspdm Requester stores the Responder&#39;s CTExponent into its context without validation. If the Requester sends a request message that requires a cryptography operation by the Responder, such as CHALLENGE, libspdm will calculate the timeout value using the Responder&#39;s unvalidated CTExponent.<br /> <br /> A patch is available in version 2.3.3. A workaround is also available. After completion of VCA, the Requester can check the value of the Responder&#39;s CTExponent. If it greater than or equal to 64, then the Requester can stop communication with the Responder.

Impact

Vector 3.x

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS v3.1 Severity and Metrics:

Base Score: 7.50 HIGH
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality (C): None
Integrity (I): None
Availability (A): High