CVE-2015-5738 - OpenCVE

The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
F5	Traffix Signaling Delivery Controller
Marvell	Octeon Ii Cn6000 Software Development Kit Octeon Ii Cn6010 Octeon Ii Cn6020

Configuration 1 [-]

AND

cpe:2.3:a:marvell:software_development_kit:2.0:*:*:*:*:*:*:*

OR	cpe:2.3:h:marvell:octeon_ii_cn6000:-:::::::*
	cpe:2.3:h:marvell:octeon_ii_cn6010:-:::::::*
	cpe:2.3:h:marvell:octeon_ii_cn6020:-:::::::*

Configuration 2 [-]

OR	cpe:2.3:a:f5:traffix_signaling_delivery_controller::::::::
	cpe:2.3:a:f5:traffix_signaling_delivery_controller::::::::

References

Link	Resource
http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions	Broken Link
https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf	Technical Description Third Party Advisory
https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html	Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2016-07-26T17:00:00

Updated: 2016-07-26T17:57:01

Reserved: 2015-08-05T00:00:00

Link: CVE-2015-5738

JSON object: View

NVD Information

Status : Analyzed

Published: 2016-07-26T17:59:00.137

Modified: 2023-08-16T14:17:11.363

Link: CVE-2015-5738

JSON object: View

Redhat Information

No data.

CWE

CWE-200

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-09-17T00:00:00", "descriptions": [{"lang": "en", "value": "The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-07-26T17:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2015-5738", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf", "refsource": "MISC", "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf"}, {"name": "https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html", "refsource": "CONFIRM", "url": "https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html"}, {"name": "http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions", "refsource": "CONFIRM", "url": "http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2015-5738", "datePublished": "2016-07-26T17:00:00", "dateReserved": "2015-08-05T00:00:00", "dateUpdated": "2016-07-26T17:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:marvell:software_development_kit:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "E332EC67-B3F5-437D-BC1F-D563B89181B8", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:marvell:octeon_ii_cn6000:-:*:*:*:*:*:*:*", "matchCriteriaId": "E31C6DFB-101A-493A-8515-4DAAB9F3A821", "vulnerable": false}, {"criteria": "cpe:2.3:h:marvell:octeon_ii_cn6010:-:*:*:*:*:*:*:*", "matchCriteriaId": "521C4A1A-96A2-4888-A345-8A153B793178", "vulnerable": false}, {"criteria": "cpe:2.3:h:marvell:octeon_ii_cn6020:-:*:*:*:*:*:*:*", "matchCriteriaId": "94651B37-ABBE-4400-8880-033A4EDAB41F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:traffix_signaling_delivery_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "90B753A2-3CC6-46A2-82C4-F2B7A029E18C", "versionEndIncluding": "3.5.1", "versionStartIncluding": "3.3.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:traffix_signaling_delivery_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "E0AAD5D5-E970-4875-8FDF-E940D9F00636", "versionEndIncluding": "4.4.0", "versionStartIncluding": "4.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack."}, {"lang": "es", "value": "La implementaci\u00f3n de RSA-CRT en Cavium Software Development Kit (SDK) 2.x cuando es utilizada en Hardware OCTEON II CN6xxx en Linux para soporte TLS con Perfect Forward Secrecy (PFS), facilita a atacantes remotos obtener claves RSA privadas llevando a cabo un ataque de canal lateral Lenstra."}], "id": "CVE-2015-5738", "lastModified": "2023-08-16T14:17:11.363", "metrics": {"cvssMetricV2": [{"acInsufInfo": true, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-07-26T17:59:00.137", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions"}, {"source": "cve@mitre.org", "tags": ["Technical Description", "Third Party Advisory"], "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}