CVE-2020-26939 — Observable Discrepancy in Fips Java API

CWE-203 — Observable Discrepancy6 documents5 sources

Severity

5.3MEDIUMNVD

EPSS

2.4%

top 14.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Bouncycastle Fips Java API Bouncycastle Legion-of-the-bouncy-castle

Timeline

PublishedNov 2

Latest updateApr 22

Description

In Legion of the Bouncy Castle BC before 1.61 and BC-FJA before 1.0.1.2, attackers can obtain sensitive information about a private exponent because of Observable Differences in Behavior to Error Inputs. This occurs in org.bouncycastle.crypto.encodings.OAEPEncoding. Sending invalid ciphertext that decrypts to a short payload in the OAEP Decoder could result in the throwing of an early exception, potentially leaking some information about the private exponent of the RSA private key performing the…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

▶NVDbouncycastle/legion-of-the-bouncy-castle< 1.61

▶NVDbouncycastle/fips_java_api< 1.0.1.2

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

Observable Differences in Behavior to Error Inputs in Bouncy Castle↗2021-04-22

▶

GHSA

Observable Differences in Behavior to Error Inputs in Bouncy Castle↗2021-04-22

▶

CVEList

CVE-2020-26939: In Legion of the Bouncy Castle BC before 1↗2020-11-02

▶

OSV

CVE-2020-26939: In Legion of the Bouncy Castle BC before 1↗2020-11-02

▶

📋Vendor Advisories

Debian

CVE-2020-26939: bouncycastle - In Legion of the Bouncy Castle BC before 1.61 and BC-FJA before 1.0.1.2, attacke...↗2020

▶