CVE-2017-13098

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

BouncyCastle TLS prior to version 1.0.3, when configured to use the JCE (Java Cryptography Extension) for cryptographic functions, provides a weak Bleichenbacher oracle when any TLS cipher suite using RSA key exchange is negotiated. An attacker can recover the private key from a vulnerable application. This vulnerability is referred to as "ROBOT."

References

http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00011.html

http://www.kb.cert.org/vuls/id/144389

http://www.securityfocus.com/bid/102195

https://github.com/bcgit/bc-java/commit/a00b684465b38d722ca9a3543b8af8568e6bad5c

https://robotattack.org/

https://security.netapp.com/advisory/ntap-20171222-0001/

https://www.debian.org/security/2017/dsa-4072

https://www.oracle.com/security-alerts/cpuoct2020.html

Details

Source: MITRE

Published: 2017-12-13

Updated: 2020-10-20

Type: CWE-203

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 5.9

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 2.2

Severity: MEDIUM

Tenable Plugins

View all (9 total)

IDNameProductFamilySeverity
136317openSUSE Security Update : bouncycastle (openSUSE-2020-607)NessusSuSE Local Security Checks
critical
105415Return Of Bleichenbacher's Oracle Threat (ROBOT) Information DisclosureNessusGeneral
medium
123233openSUSE Security Update : bouncycastle (openSUSE-2019-546)NessusSuSE Local Security Checks
critical
120804Fedora 28 : bouncycastle (2018-ceced55c5e)NessusFedora Local Security Checks
high
111428openSUSE Security Update : bouncycastle (openSUSE-2018-776)NessusSuSE Local Security Checks
critical
110599Fedora 27 : bouncycastle (2018-da9fe79871)NessusFedora Local Security Checks
high
110530openSUSE Security Update : bouncycastle (openSUSE-2018-628)NessusSuSE Local Security Checks
high
105502FreeBSD : The Bouncy Castle Crypto APIs: CVE-2017-13098 ('ROBOT') (6a131fbf-ec76-11e7-aa65-001b216d295b)NessusFreeBSD Local Security Checks
medium
105432Debian DSA-4072-1 : bouncycastle - security updateNessusDebian Local Security Checks
medium