CVE-2018-15836Improper Verification of Cryptographic Signature in Openswan

CWE-347Improper Verification of Cryptographic Signature4 documents4 sources
Severity
7.5HIGHNVD
EPSS
0.1%
top 64.62%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Xelerance Openswan
Timeline
PublishedSep 26
Latest updateMay 14

Description

In verify_signed_hash() in lib/liboswkeys/signatures.c in Openswan before 2.6.50.1, the RSA implementation does not verify the value of padding string during PKCS#1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used. IKEv2 signature verification is affected when RAW RSA keys are used.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

NVDxelerance/openswan< 2.6.50.1

Patches

Patch: github.comPatch: github.comPatch: github.com

🔴Vulnerability Details

1
GHSA
GHSA-3qpc-4533-p5rr: In verify_signed_hash() in lib/liboswkeys/signatures2022-05-14

📋Vendor Advisories

1
Red Hat
openswan: Improper signature verification in try_RSA_signature_v2() fucntion for RSASSA-PKCS1-v1_5 signature scheme2018-08-17

💬Community

1
Bugzilla
CVE-2018-15836 openswan: Improper signature verification in try_RSA_signature_v2() fucntion for RSASSA-PKCS1-v1_5 signature scheme2018-08-17
CVE-2018-15836 — Xelerance Openswan vulnerability | cvebase