CVE-2023-49092 - Vulnerability Details - OpenCVE

RustCrypto/RSA is a portable RSA implementation in pure Rust. Due to a non-constant-time implementation, information about the private key is leaked through timing information which is observable over the network. An attacker may be able to use that information to recover the key. There is currently no fix available. As a workaround, avoid using the RSA crate in settings where attackers are able to observe timing information, e.g. local use on a non-compromised computer.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Rustcrypto	Rsa

Configuration 1 [-]

cpe:2.3:a:rustcrypto:rsa:*:*:*:*:*:rust:*:*

No data.

References

Link	Providers
https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643
https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr

History

Wed, 27 Nov 2024 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2023-11-28T20:57:06.739Z

Updated: 2024-11-27T16:03:51.520Z

Reserved: 2023-11-21T18:57:30.429Z

Link: CVE-2023-49092

Vulnrichment

Updated: 2024-08-02T21:46:28.810Z

NVD

Status : Modified

Published: 2023-11-28T21:15:08.530

Modified: 2024-11-21T08:32:48.380

Link: CVE-2023-49092

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-49092", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2023-11-21T18:57:30.429Z", "datePublished": "2023-11-28T20:57:06.739Z", "dateUpdated": "2024-11-27T16:03:51.520Z"}, "containers": {"cna": {"title": "RustCrypto/RSA vulnerable to a Marvin Attack via key recovery through timing sidechannels", "problemTypes": [{"descriptions": [{"cweId": "CWE-385", "lang": "en", "description": "CWE-385: Covert Timing Channel", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr"}, {"name": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643", "tags": ["x_refsource_MISC"], "url": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643"}], "affected": [{"vendor": "RustCrypto", "product": "RSA", "versions": [{"version": "<= 0.9.5", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2023-12-14T22:50:31.056Z"}, "descriptions": [{"lang": "en", "value": "RustCrypto/RSA is a portable RSA implementation in pure Rust. Due to a non-constant-time implementation, information about the private key is leaked through timing information which is observable over the network. An attacker may be able to use that information to recover the key. There is currently no fix available. As a workaround, avoid using the RSA crate in settings where attackers are able to observe timing information, e.g. local use on a non-compromised computer."}], "source": {"advisory": "GHSA-c38w-74pg-36hr", "discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T21:46:28.810Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr"}, {"name": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643"}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-11-27T16:03:39.720474Z", "id": "CVE-2023-49092", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-27T16:03:51.520Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr", "name": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643", "name": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643", "tags": ["x_refsource_MISC", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T21:46:28.810Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-49092", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-11-27T16:03:39.720474Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-27T16:03:45.506Z"}}], "cna": {"title": "RustCrypto/RSA vulnerable to a Marvin Attack via key recovery through timing sidechannels", "source": {"advisory": "GHSA-c38w-74pg-36hr", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "RustCrypto", "product": "RSA", "versions": [{"status": "affected", "version": "<= 0.9.5"}]}], "references": [{"url": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr", "name": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643", "name": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "RustCrypto/RSA is a portable RSA implementation in pure Rust. Due to a non-constant-time implementation, information about the private key is leaked through timing information which is observable over the network. An attacker may be able to use that information to recover the key. There is currently no fix available. As a workaround, avoid using the RSA crate in settings where attackers are able to observe timing information, e.g. local use on a non-compromised computer."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-385", "description": "CWE-385: Covert Timing Channel"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2023-12-14T22:50:31.056Z"}}}, "cveMetadata": {"cveId": "CVE-2023-49092", "state": "PUBLISHED", "dateUpdated": "2024-11-27T16:03:51.520Z", "dateReserved": "2023-11-21T18:57:30.429Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2023-11-28T20:57:06.739Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:rustcrypto:rsa:*:*:*:*:*:rust:*:*", "matchCriteriaId": "248AAFCD-E795-48F3-AC41-468B1E2EB267", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "RustCrypto/RSA is a portable RSA implementation in pure Rust. Due to a non-constant-time implementation, information about the private key is leaked through timing information which is observable over the network. An attacker may be able to use that information to recover the key. There is currently no fix available. As a workaround, avoid using the RSA crate in settings where attackers are able to observe timing information, e.g. local use on a non-compromised computer."}, {"lang": "es", "value": "RustCrypto/RSA es una implementaci\u00f3n RSA port\u00e1til en Rust puro. Debido a una implementaci\u00f3n de tiempo no constante, la informaci\u00f3n sobre la clave privada se filtra a trav\u00e9s de informaci\u00f3n de tiempo que es observable en la red. Un atacante puede utilizar esa informaci\u00f3n para recuperar la clave. Actualmente no hay ninguna soluci\u00f3n disponible. Como workaround, evite utilizar la caja RSA en entornos donde los atacantes puedan observar informaci\u00f3n de tiempo, por ejemplo, el uso local en una maquina no comprometida."}], "id": "CVE-2023-49092", "lastModified": "2024-11-21T08:32:48.380", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 3.6, "source": "security-advisories@github.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-11-28T21:15:08.530", "references": [{"source": "security-advisories@github.com", "tags": ["Issue Tracking"], "url": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643"}, {"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking"], "url": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-385"}], "source": "security-advisories@github.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-203"}], "source": "nvd@nist.gov", "type": "Primary"}]}