CVE-2015-5738 - Vulnerability Details - OpenCVE

The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
F5	Traffix Signaling Delivery Controller
Marvell	Octeon Ii Cn6000 Octeon Ii Cn6010 Octeon Ii Cn6020 Software Development Kit

Configuration 1 [-]

AND

cpe:2.3:a:marvell:software_development_kit:2.0:*:*:*:*:*:*:*

OR	cpe:2.3:h:marvell:octeon_ii_cn6000:-:::::::*
	cpe:2.3:h:marvell:octeon_ii_cn6010:-:::::::*
	cpe:2.3:h:marvell:octeon_ii_cn6020:-:::::::*

Configuration 2 [-]

OR	cpe:2.3:a:f5:traffix_signaling_delivery_controller::::::::
	cpe:2.3:a:f5:traffix_signaling_delivery_controller::::::::

No data.

References

Link	Providers
http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions
https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf
https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2016-07-26T17:00:00

Updated: 2024-08-06T06:59:04.382Z

Reserved: 2015-08-05T00:00:00

Link: CVE-2015-5738

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2016-07-26T17:59:00.137

Modified: 2025-04-12T10:46:40.837

Link: CVE-2015-5738

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-09-17T00:00:00", "descriptions": [{"lang": "en", "value": "The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-07-26T17:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2015-5738", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf", "refsource": "MISC", "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf"}, {"name": "https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html", "refsource": "CONFIRM", "url": "https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html"}, {"name": "http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions", "refsource": "CONFIRM", "url": "http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T06:59:04.382Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2015-5738", "datePublished": "2016-07-26T17:00:00", "dateReserved": "2015-08-05T00:00:00", "dateUpdated": "2024-08-06T06:59:04.382Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:marvell:software_development_kit:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "E332EC67-B3F5-437D-BC1F-D563B89181B8", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:marvell:octeon_ii_cn6000:-:*:*:*:*:*:*:*", "matchCriteriaId": "E31C6DFB-101A-493A-8515-4DAAB9F3A821", "vulnerable": false}, {"criteria": "cpe:2.3:h:marvell:octeon_ii_cn6010:-:*:*:*:*:*:*:*", "matchCriteriaId": "521C4A1A-96A2-4888-A345-8A153B793178", "vulnerable": false}, {"criteria": "cpe:2.3:h:marvell:octeon_ii_cn6020:-:*:*:*:*:*:*:*", "matchCriteriaId": "94651B37-ABBE-4400-8880-033A4EDAB41F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:traffix_signaling_delivery_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "90B753A2-3CC6-46A2-82C4-F2B7A029E18C", "versionEndIncluding": "3.5.1", "versionStartIncluding": "3.3.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:traffix_signaling_delivery_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "E0AAD5D5-E970-4875-8FDF-E940D9F00636", "versionEndIncluding": "4.4.0", "versionStartIncluding": "4.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack."}, {"lang": "es", "value": "La implementaci\u00f3n de RSA-CRT en Cavium Software Development Kit (SDK) 2.x cuando es utilizada en Hardware OCTEON II CN6xxx en Linux para soporte TLS con Perfect Forward Secrecy (PFS), facilita a atacantes remotos obtener claves RSA privadas llevando a cabo un ataque de canal lateral Lenstra."}], "id": "CVE-2015-5738", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": true, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-07-26T17:59:00.137", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions"}, {"source": "cve@mitre.org", "tags": ["Technical Description", "Third Party Advisory"], "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Technical Description", "Third Party Advisory"], "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}