CVE-2017-3736 — Sensitive Information Exposure in Openssl
Severity
6.5MEDIUMNVD
OSV5.3
EPSS
7.1%
top 8.43%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedNov 2
Latest updateMay 14
Description
There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources…
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6
Affected Packages4 packages
Patches
🔴Vulnerability Details
4GHSA▶
GHSA-72w7-9ghx-p5pg: There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1↗2022-05-14
CVEList▶
CVE-2017-3736: There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1↗2017-11-02
OSV▶
CVE-2017-3736: There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1↗2017-11-02
📋Vendor Advisories
4Debian▶
CVE-2017-3736: openssl - There is a carry propagating bug in the x86_64 Montgomery squaring procedure in ...↗2017