CVE-2023-49092 - OpenCVE

RustCrypto/RSA is a portable RSA implementation in pure Rust. Due to a non-constant-time implementation, information about the private key is leaked through timing information which is observable over the network. An attacker may be able to use that information to recover the key. There is currently no fix available. As a workaround, avoid using the RSA crate in settings where attackers are able to observe timing information, e.g. local use on a non-compromised computer.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Rustcrypto	Rsa

Configuration 1 [-]

cpe:2.3:a:rustcrypto:rsa:*:*:*:*:*:rust:*:*

No data.

References

Link	Providers
https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643
https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr

History

No history.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2023-11-28T20:57:06.739Z

Updated: 2024-08-02T21:46:28.810Z

Reserved: 2023-11-21T18:57:30.429Z

Link: CVE-2023-49092

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2023-11-28T21:15:08.530

Modified: 2023-12-28T18:54:22.443

Link: CVE-2023-49092

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-49092", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2023-11-21T18:57:30.429Z", "datePublished": "2023-11-28T20:57:06.739Z", "dateUpdated": "2024-08-02T21:46:28.810Z"}, "containers": {"cna": {"title": "RustCrypto/RSA vulnerable to a Marvin Attack via key recovery through timing sidechannels", "problemTypes": [{"descriptions": [{"cweId": "CWE-385", "lang": "en", "description": "CWE-385: Covert Timing Channel", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr"}, {"name": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643", "tags": ["x_refsource_MISC"], "url": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643"}], "affected": [{"vendor": "RustCrypto", "product": "RSA", "versions": [{"version": "<= 0.9.5", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2023-12-14T22:50:31.056Z"}, "descriptions": [{"lang": "en", "value": "RustCrypto/RSA is a portable RSA implementation in pure Rust. Due to a non-constant-time implementation, information about the private key is leaked through timing information which is observable over the network. An attacker may be able to use that information to recover the key. There is currently no fix available. As a workaround, avoid using the RSA crate in settings where attackers are able to observe timing information, e.g. local use on a non-compromised computer."}], "source": {"advisory": "GHSA-c38w-74pg-36hr", "discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T21:46:28.810Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr"}, {"name": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643"}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:rustcrypto:rsa:*:*:*:*:*:rust:*:*", "matchCriteriaId": "248AAFCD-E795-48F3-AC41-468B1E2EB267", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "RustCrypto/RSA is a portable RSA implementation in pure Rust. Due to a non-constant-time implementation, information about the private key is leaked through timing information which is observable over the network. An attacker may be able to use that information to recover the key. There is currently no fix available. As a workaround, avoid using the RSA crate in settings where attackers are able to observe timing information, e.g. local use on a non-compromised computer."}, {"lang": "es", "value": "RustCrypto/RSA es una implementaci\u00f3n RSA port\u00e1til en Rust puro. Debido a una implementaci\u00f3n de tiempo no constante, la informaci\u00f3n sobre la clave privada se filtra a trav\u00e9s de informaci\u00f3n de tiempo que es observable en la red. Un atacante puede utilizar esa informaci\u00f3n para recuperar la clave. Actualmente no hay ninguna soluci\u00f3n disponible. Como workaround, evite utilizar la caja RSA en entornos donde los atacantes puedan observar informaci\u00f3n de tiempo, por ejemplo, el uso local en una maquina no comprometida."}], "id": "CVE-2023-49092", "lastModified": "2023-12-28T18:54:22.443", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 3.6, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2023-11-28T21:15:08.530", "references": [{"source": "security-advisories@github.com", "tags": ["Issue Tracking"], "url": "https://github.com/RustCrypto/RSA/issues/19#issuecomment-1822995643"}, {"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/RustCrypto/RSA/security/advisories/GHSA-c38w-74pg-36hr"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-203"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-385"}], "source": "security-advisories@github.com", "type": "Secondary"}]}