Vulnerability identifier: #VU86069
Vulnerability risk: Medium
CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-200
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
The Bouncy Castle Crypto Package For Java
Universal components / Libraries /
Libraries used by multiple products
Vendor: Legion of the Bouncy Castle Inc.
Description
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to DHIES/ECIES CBC mode vulnerable to padding oracle attack. A remote attacker with enough observations can identify when the decryption is failing due to padding.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
The Bouncy Castle Crypto Package For Java: 1.55
External links
http://access.redhat.com/errata/RHSA-2018:2669
http://access.redhat.com/errata/RHSA-2018:2927
http://github.com/bcgit/bc-java/commit/21dcb3d9744c83dcf2ff8fcee06dbca7bfa4ef35#diff-4439ce586bf9a13bfec05c0d113b8098
http://lists.debian.org/debian-lts-announce/2018/07/msg00009.html
http://security.netapp.com/advisory/ntap-20181127-0004/
http://usn.ubuntu.com/3727-1/
http://www.oracle.com/security-alerts/cpuoct2020.html
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.