CVE-2017-3736

MEDIUM

Description

There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.

References

http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html

http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html

http://www.securityfocus.com/bid/101666

http://www.securitytracker.com/id/1039727

https://access.redhat.com/errata/RHSA-2018:0998

https://access.redhat.com/errata/RHSA-2018:2185

https://access.redhat.com/errata/RHSA-2018:2186

https://access.redhat.com/errata/RHSA-2018:2187

https://access.redhat.com/errata/RHSA-2018:2568

https://access.redhat.com/errata/RHSA-2018:2575

https://access.redhat.com/errata/RHSA-2018:2713

https://github.com/openssl/openssl/commit/4443cf7aa0099e5ce615c18cee249fff77fb0871

https://security.FreeBSD.org/advisories/FreeBSD-SA-17:11.openssl.asc

https://security.gentoo.org/glsa/201712-03

https://security.netapp.com/advisory/ntap-20171107-0002/

https://security.netapp.com/advisory/ntap-20180117-0002/

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03881en_us

https://www.debian.org/security/2017/dsa-4017

https://www.debian.org/security/2017/dsa-4018

https://www.openssl.org/news/secadv/20171102.txt

https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

https://www.tenable.com/security/tns-2017-14

https://www.tenable.com/security/tns-2017-15

Details

Source: MITRE

Published: 2017-11-02

Updated: 2019-04-23

Type: CWE-200

Risk Information

CVSS v2.0

Base Score: 4

Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 8

Severity: MEDIUM

CVSS v3.0

Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 2.8

Severity: MEDIUM

Tenable Plugins

View all (52 total)

IDNameProductFamilySeverity
144773IBM HTTP Server 7.0.0.0 <= 7.0.0.43 / 8.0.0.0 <= 8.0.0.14 / 8.5.0.0 < 8.5.5.14 / 9.0.0.0 < 9.0.0.8 Multiple Vulnerabilities (569301)NessusWeb Servers
medium
136066Oracle Tuxedo Information Disclosure (Apr 2018 CPU)NessusMisc.
medium
133045Oracle MySQL Connectors Multiple Vulnerabilities (Jan 2018 CPU)NessusMisc.
medium
131184Oracle Enterprise Manager Ops Center (Jan 2019 CPU)NessusMisc.
high
127201NewStart CGSL CORE 5.04 / MAIN 5.04 : openssl Multiple Vulnerabilities (NS-SA-2019-0033)NessusNewStart CGSL Local Security Checks
critical
125000EulerOS Virtualization 3.0.1.0 : openssl (EulerOS-SA-2019-1547)NessusHuawei Local Security Checks
critical
121753Photon OS 1.0: Openssl PHSA-2017-0042NessusPhotonOS Local Security Checks
high
120126SUSE SLES15 Security Update : java-1_8_0-ibm (SUSE-SU-2018:3082-1)NessusSuSE Local Security Checks
critical
120014SUSE SLES12 Security Update : nodejs6 (SUSE-SU-2018:0293-1)NessusSuSE Local Security Checks
medium
120012SUSE SLES12 Security Update : nodejs4 (SUSE-SU-2018:0002-1)NessusSuSE Local Security Checks
medium
118427EulerOS Virtualization 2.5.0 : openssl (EulerOS-SA-2018-1339)NessusHuawei Local Security Checks
medium
118293SUSE SLES12 Security Update : java-1_8_0-ibm (SUSE-SU-2018:2839-2)NessusSuSE Local Security Checks
critical
117700SUSE SLES12 Security Update : java-1_8_0-ibm (SUSE-SU-2018:2839-1)NessusSuSE Local Security Checks
critical
117587RHEL 6 : java-1.8.0-ibm (RHSA-2018:2713)NessusRed Hat Local Security Checks
critical
112178RHEL 6 : java-1.8.0-ibm (RHSA-2018:2575)NessusRed Hat Local Security Checks
critical
112131RHEL 7 : java-1.8.0-ibm (RHSA-2018:2568)NessusRed Hat Local Security Checks
critical
111891Photon OS 1.0: Linux / Openssl PHSA-2017-0042 (deprecated)NessusPhotonOS Local Security Checks
high
111147RHEL 6 : Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 6 (RHSA-2018:2186)NessusRed Hat Local Security Checks
high
111146RHEL 7 : Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 7 (RHSA-2018:2185)NessusRed Hat Local Security Checks
high
110843EulerOS 2.0 SP3 : openssl (EulerOS-SA-2018-1179)NessusHuawei Local Security Checks
medium
109698Amazon Linux AMI : openssl (ALAS-2018-1016)NessusAmazon Linux Local Security Checks
medium
109513EulerOS 2.0 SP2 : openssl (EulerOS-SA-2018-1115)NessusHuawei Local Security Checks
medium
109455Scientific Linux Security Update : openssl on SL7.x x86_64 (20180410)NessusScientific Linux Local Security Checks
medium
109406Juniper NSM < 2012.2R14 OpenSSL Multiple Vulnerabilities (JSA10851)NessusMisc.
medium
109379CentOS 7 : openssl (CESA-2018:0998)NessusCentOS Local Security Checks
medium
109364Amazon Linux 2 : openssl (ALAS-2018-1004)NessusAmazon Linux Local Security Checks
medium
109204Oracle Enterprise Manager Cloud Control Multiple Vulnerabilities (Apr 2018 CPU)NessusMisc.
medium
109112Oracle Linux 7 : openssl (ELSA-2018-0998)NessusOracle Linux Local Security Checks
medium
108993RHEL 7 : openssl (RHSA-2018:0998)NessusRed Hat Local Security Checks
medium
108517pfSense < 2.4.2 Multiple Vulnerabilities (SA-17_07)NessusFirewalls
medium
106547openSUSE Security Update : nodejs6 (openSUSE-2018-116)NessusSuSE Local Security Checks
medium
106199Oracle Secure Global Desktop Multiple Vulnerabilities (January 2018 CPU)NessusMisc.
high
106105Oracle E-Business Multiple Vulnerabilities (January 2018 CPU)NessusMisc.
medium
106104Oracle VM VirtualBox 5.1.x < 5.1.32 / 5.2.x < 5.2.6 (January 2018 CPU)NessusMisc.
medium
106103MySQL Enterprise Monitor 3.3.x < 3.3.7.3306 / 3.4.x < 3.4.5.4248 / 4.0.x < 4.0.2.5168 Multiple Vulnerabilities (January 2018 CPU)NessusCGI abuses
medium
106092SUSE SLES12 Security Update : CaaS Platform 2.0 images (SUSE-SU-2018:0053-1)NessusSuSE Local Security Checks
high
105638openSUSE Security Update : nodejs4 (openSUSE-2018-5)NessusSuSE Local Security Checks
medium
105353SUSE SLED12 / SLES12 Security Update : openssl (SUSE-SU-2017:3343-1)NessusSuSE Local Security Checks
medium
105341openSUSE Security Update : openssl (openSUSE-2017-1381)NessusSuSE Local Security Checks
medium
105333F5 Networks BIG-IP : OpenSSL vulnerability (K14363514)NessusF5 Networks Local Security Checks
medium
105263GLSA-201712-03 : OpenSSL: Multiple vulnerabilitiesNessusGentoo Local Security Checks
medium
105224openSUSE Security Update : openssl (openSUSE-2017-1324)NessusSuSE Local Security Checks
medium
105067FreeBSD : FreeBSD -- OpenSSL multiple vulnerabilities (9442a811-dab3-11e7-b5af-a4badb2f4699)NessusFreeBSD Local Security Checks
medium
104967SUSE SLED12 / SLES12 Security Update : openssl (SUSE-SU-2017:3169-1)NessusSuSE Local Security Checks
medium
104639Tenable SecurityCenter OpenSSL 1.0.2 < 1.0.2m Multiple VulnerabilitiesNessusMisc.
medium
104432Ubuntu 14.04 LTS / 16.04 LTS / 17.04 / 17.10 : openssl vulnerabilities (USN-3475-1)NessusUbuntu Local Security Checks
medium
104409OpenSSL 1.1.0 < 1.1.0g RSA/DSA Unspecified Carry IssueNessusWeb Servers
medium
104408OpenSSL 1.0.x < 1.0.2m RSA/DSA Unspecified Carry IssueNessusWeb Servers
medium
104402Debian DSA-4018-1 : openssl - security updateNessusDebian Local Security Checks
medium
104401Debian DSA-4017-1 : openssl1.0 - security updateNessusDebian Local Security Checks
medium
104367FreeBSD : OpenSSL -- Multiple vulnerabilities (f40f07aa-c00f-11e7-ac58-b499baebfeaf)NessusFreeBSD Local Security Checks
medium
104363Slackware 14.2 / current : openssl (SSA:2017-306-02)NessusSlackware Local Security Checks
medium