Instituto Nacional de ciberseguridad. Sección Incibe
Instituto Nacional de Ciberseguridad. Sección INCIBE-CERT

Go to Calendar     Go to Press Room     Go to Newsletters subscription

Search

CVE-2022-4304

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
08/02/2023
Last modified:
04/11/2025

Description

A timing based side channel exists in the OpenSSL RSA Decryption implementation<br /> which could be sufficient to recover a plaintext across a network in a<br /> Bleichenbacher style attack. To achieve a successful decryption an attacker<br /> would have to be able to send a very large number of trial messages for<br /> decryption. The vulnerability affects all RSA padding modes: PKCS#1 v1.5,<br /> RSA-OEAP and RSASVE.<br /> <br /> For example, in a TLS connection, RSA is commonly used by a client to send an<br /> encrypted pre-master secret to the server. An attacker that had observed a<br /> genuine connection between a client and a server could use this flaw to send<br /> trial messages to the server and record the time taken to process them. After a<br /> sufficiently large number of messages the attacker could recover the pre-master<br /> secret used for the original connection and thus be able to decrypt the<br /> application data sent over that connection.

Impact

Vector 3.x
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS v3.1 Severity and Metrics:

Base Score: 5.90 MEDIUM
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality (C): High
Integrity (I): None
Availability (A): None

Base Score 3.x
5.90
Severity 3.x
MEDIUM

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* 1.0.2 (including) 1.0.2zg (excluding)
cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* 1.1.1 (including) 1.1.1t (excluding)
cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* 3.0.0 (including) 3.0.8 (excluding)
cpe:2.3:a:stormshield:endpoint_security:*:*:*:*:*:*:*:* 7.2.40 (excluding)
cpe:2.3:a:stormshield:sslvpn:*:*:*:*:*:*:*:* 3.2.1 (excluding)
cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:* 2.7.0 (including) 2.7.11 (excluding)
cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:* 2.8.0 (including) 3.7.34 (excluding)
cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:* 3.8.0 (including) 3.11.22 (excluding)
cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:* 4.0.0 (including) 4.3.16 (excluding)
cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:* 4.4.0 (including) 4.6.3 (excluding)

To consult the complete list of CPE names with products and versions, see this page


References to Advisories, Solutions, and Tools