CVE-2017-3226Generation of Predictable IV with CBC Mode in U-boot

CWE-329Generation of Predictable IV with CBC ModeCWE-3104 documents4 sources
Severity
6.4MEDIUMNVD
EPSS
0.0%
top 87.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
DAS U-bootDenx U-bootDebian U-boot
Timeline
PublishedJul 24
Latest updateMay 13

Description

Das U-Boot is a device bootloader that can read its configuration from an AES encrypted file. Devices that make use of Das U-Boot's AES-CBC encryption feature using environment encryption (i.e., setting the configuration parameter CONFIG_ENV_AES=y) read environment variables from disk as the encrypted disk image is processed. An attacker with physical access to the device can manipulate the encrypted environment data to include a crafted two-byte sequence which triggers an error in environment v

CVSS vector

CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 0.5 | Impact: 5.9

Affected Packages3 packages

CVEListV5das/u-boot2017.092017.09
NVDdenx/u-boot< 2017.09
debiandebian/u-boot

🔴Vulnerability Details

2
GHSA
GHSA-wg74-j96c-c2wj: Das U-Boot is a device bootloader that can read its configuration from an AES encrypted file2022-05-13
OSV
CVE-2017-3226: Das U-Boot is a device bootloader that can read its configuration from an AES encrypted file2018-07-24

📋Vendor Advisories

1
Debian
CVE-2017-3226: u-boot - Das U-Boot is a device bootloader that can read its configuration from an AES en...2017
CVE-2017-3226 — DAS U-boot vulnerability | cvebase