CVE-2016-7055
Severity
5.9MEDIUM
EPSS
3.6%
top 12.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMay 4
Latest updateMay 14
Description
There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is because the subroutine in question is not used in operations with the private key itself and an input of the attacker's direct choice. Otherwise the bug can manifest itself as transient authentication and …
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6
Affected Packages3 packages
Patches
🔴Vulnerability Details
4GHSA▶
GHSA-hxpw-pxmm-q49r: There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1↗2022-05-14
CVEList▶
CVE-2016-7055: There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1↗2017-05-04
OSV▶
CVE-2016-7055: There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1↗2017-05-04
📋Vendor Advisories
5Debian▶
CVE-2016-7055: openssl - There is a carry propagating bug in the Broadwell-specific Montgomery multiplica...↗2016