CVE-2022-4304
published 2023-02-08CVE-2022-4304: A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a…
medium5.9CVSS 3.1
AVNACHPRNUINSUCHINAN
A timing based side channel exists in the OpenSSL RSA Decryption implementation
which could be sufficient to recover a plaintext across a network in a
Bleichenbacher style attack. To achieve a successful decryption an attacker
would have to be able to send a very large number of trial messages for
decryption. The vulnerability affects all RSA padding modes: PKCS#1 v1.5,
RSA-OEAP and RSASVE.
For example, in a TLS connection, RSA is commonly used by a client to send an
encrypted pre-master secret to the server. An attacker that had observed a
genuine connection between a client and a server could use this flaw to send
trial messages to the server and record the time taken to process them. After a
sufficiently large number of messages the attacker could recover the pre-master
secret used for the original connection and thus be able to decrypt the
application data sent over that connection.
Affected
58 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openssl | < openssl 3.0.8-1 (bookworm) | openssl 3.0.8-1 (bookworm) |
| msrc | azl3_edk2_20230301gitf80f052277c8-37_on_azure_linux_3.0 | — | — |
| msrc | azl3_edk2_20240223gitedc6681206c1-1_on_azure_linux_3.0 | — | — |
| msrc | azl3_hvloader_1.0.1-2_on_azure_linux_3.0 | — | — |
| msrc | azl3_hvloader_1.0.1-4_on_azure_linux_3.0 | — | — |
| msrc | azl3_rust_1.75.0-14_on_azure_linux_3.0 | — | — |
| msrc | azl3_rust_1.86.0-1_on_azure_linux_3.0 | — | — |
| msrc | cbl2_cloud-hypervisor_30.0-2_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_hvloader_1.0.1-2_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_openssl_1.1.1k-21_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_qemu_6.2.0-24_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_qemu_6.2.0-25_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_qemu_6.2.0-26_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_rust_1.68.2-5_on_cbl_mariner_2.0 | — | — |
| msrc | cm1_cloud-hypervisor_22.0-2_on_cbl_mariner_1.0 | — | — |
| msrc | cm1_openssl_1.1.1k-13_on_cbl_mariner_1.0 | — | — |
| msrc | cm1_rust_1.59.0-1_on_cbl_mariner_1.0 | — | — |
| nodejs | nodejs | >= 0 < 12.22.9~dfsg-1ubuntu3.3 | 12.22.9~dfsg-1ubuntu3.3 |
| openssl | openssl | >= 0 < 1.1.1t-r0 | 1.1.1t-r0 |
| openssl | openssl | >= 0 < 1.1.1t-r0 | 1.1.1t-r0 |
| openssl | openssl | >= 0 < 1.1.1t-r0 | 1.1.1t-r0 |
| openssl | openssl | >= 0 < 3.0.8-r0 | 3.0.8-r0 |
| openssl | openssl | >= 0 < 3.0.8-r0 | 3.0.8-r0 |
| openssl | openssl | >= 0 < 3.0.8-r0 | 3.0.8-r0 |
| openssl | openssl | >= 0 < 3.0.8-r0 | 3.0.8-r0 |
CVSS provenance
nvdv3.15.9MEDIUMCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
osv7.4HIGH