CVE-2024-5288

An issue was discovered in wolfSSL before 5.7.0. A safe-error attack via Rowhammer, namely FAULT+PROBE, leads to ECDSA key disclosure. When WOLFSSL_CHECK_SIG_FAULTS is used in signing operations with private ECC keys, such as in server-side TLS connections, the connection is halted if any fault occurs. The success rate in a certain amount of connection requests can be processed via an advanced technique for ECDSA key recovery.

CVSS v3 5.1 MEDIUM

5.1^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.4 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://github.com/wolfSSL/wolfssl/releases/tag/v5.7.2-stable

Configurations

No configuration.

History

28 Aug 2024, 12:57

Type	Values Removed	Values Added
Summary		(es) Se descubrió un problema en wolfSSL antes de 5.7.0. Un ataque de error seguro a través de Rowhammer, concretamente FAULT+PROBE, conduce a la divulgación de la clave ECDSA. Cuando se utiliza WOLFSSL_CHECK_SIG_FAULTS en operaciones de firma con claves ECC privadas, como en conexiones TLS del lado del servidor, la conexión se detiene si se produce algún error. La tasa de éxito en una cierta cantidad de solicitudes de conexión se puede procesar mediante una técnica avanzada para la recuperación de claves ECDSA.

27 Aug 2024, 19:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-08-27 19:15

Updated : 2024-08-28 12:57

NVD link : CVE-2024-5288

Mitre link : CVE-2024-5288

CVE.ORG link : CVE-2024-5288

JSON object : View

Products Affected

No product.

CWE

CWE-922

Insecure Storage of Sensitive Information

5.1 /10