Information disclosure in The Bouncy Castle Crypto Package For Java

#VU9750 Information disclosure in The Bouncy Castle Crypto Package For Java

Published: 2020-03-18 | Updated: 2020-05-04

Vulnerability identifier: #VU9750

Vulnerability risk: Low

CVSSv3.1: 3.5 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N/E:F/RL:O/RC:C]

CVE-ID: CVE-2017-13098

CWE-ID: CWE-200

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
The Bouncy Castle Crypto Package For Java
Universal components / Libraries / Libraries used by multiple products

Vendor: Legion of the Bouncy Castle Inc.

Description

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The vulnerability exists due to the application is susceptible to a chosen ciphertext attack when negotiating an RSA key exchange for any TLS cipher suite. A remote attacker can conduct man-in-the-middle attack and decrypt HTTPS traffic or impersonate the HTTPS server.

Mitigation
Update to version 1.0.3.

Vulnerable software versions

The Bouncy Castle Crypto Package For Java: 1.58

External links
http://security.netapp.com/advisory/ntap-20171222-0001/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, a fully functional exploit for this vulnerability is available.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Dell CloudLink

IBM Log Analysis update for Bouncy Castle

OpenSUSE Linux update for bouncycastle

Information disclosure in Bouncy Castle