CVE-2017-3738

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.

References

http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html

http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html

http://www.securityfocus.com/bid/102118

http://www.securitytracker.com/id/1039978

https://access.redhat.com/errata/RHSA-2018:0998

https://access.redhat.com/errata/RHSA-2018:2185

https://access.redhat.com/errata/RHSA-2018:2186

https://access.redhat.com/errata/RHSA-2018:2187

https://github.com/openssl/openssl/commit/e502cc86df9dafded1694fceb3228ee34d11c11a

https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/

https://security.FreeBSD.org/advisories/FreeBSD-SA-17:12.openssl.asc

https://security.gentoo.org/glsa/201712-03

https://security.netapp.com/advisory/ntap-20171208-0001/

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03881en_us

https://www.debian.org/security/2017/dsa-4065

https://www.debian.org/security/2018/dsa-4157

https://www.openssl.org/news/secadv/20171207.txt

https://www.openssl.org/news/secadv/20180327.txt

https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

https://www.tenable.com/security/tns-2017-16

https://www.tenable.com/security/tns-2018-04

https://www.tenable.com/security/tns-2018-06

https://www.tenable.com/security/tns-2018-07

Details

Source: MITRE

Published: 2017-12-07

Updated: 2019-04-23

Type: CWE-200

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 5.9

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 2.2

Severity: MEDIUM

Tenable Plugins

View all (41 total)

IDNameProductFamilySeverity
131184Oracle Enterprise Manager Ops Center (Jan 2019 CPU)NessusMisc.
critical
127201NewStart CGSL CORE 5.04 / MAIN 5.04 : openssl Multiple Vulnerabilities (NS-SA-2019-0033)NessusNewStart CGSL Local Security Checks
critical
124999EulerOS Virtualization 3.0.1.0 : openssl (EulerOS-SA-2019-1546)NessusHuawei Local Security Checks
high
121905Photon OS 2.0: Openssl PHSA-2018-2.0-0010-(a)NessusPhotonOS Local Security Checks
medium
121796Photon OS 1.0: Openssl PHSA-2018-1.0-0097-(a)NessusPhotonOS Local Security Checks
medium
120014SUSE SLES12 Security Update : nodejs6 (SUSE-SU-2018:0293-1)NessusSuSE Local Security Checks
critical
120012SUSE SLES12 Security Update : nodejs4 (SUSE-SU-2018:0002-1)NessusSuSE Local Security Checks
critical
700352Google Chrome < 64.0.3282.119 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
111908Photon OS 1.0: Openssl PHSA-2018-1.0-0097-(a) (deprecated)NessusPhotonOS Local Security Checks
medium
111333Oracle Secure Global Desktop Multiple Vulnerabilities (July 2018 CPU)NessusMisc.
critical
111279Photon OS 2.0 : openssl (PhotonOS-PHSA-2018-2.0-0010-(a)) (deprecated)NessusPhotonOS Local Security Checks
medium
111147RHEL 6 : Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 6 (RHSA-2018:2186)NessusRed Hat Local Security Checks
critical
111146RHEL 7 : Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 7 (RHSA-2018:2185)NessusRed Hat Local Security Checks
critical
110843EulerOS 2.0 SP3 : openssl (EulerOS-SA-2018-1179)NessusHuawei Local Security Checks
medium
109698Amazon Linux AMI : openssl (ALAS-2018-1016)NessusAmazon Linux Local Security Checks
medium
109513EulerOS 2.0 SP2 : openssl (EulerOS-SA-2018-1115)NessusHuawei Local Security Checks
medium
109455Scientific Linux Security Update : openssl on SL7.x x86_64 (20180410)NessusScientific Linux Local Security Checks
medium
109406Juniper NSM < 2012.2R14 OpenSSL Multiple Vulnerabilities (JSA10851)NessusMisc.
medium
109379CentOS 7 : openssl (CESA-2018:0998)NessusCentOS Local Security Checks
medium
109364Amazon Linux 2 : openssl (ALAS-2018-1004)NessusAmazon Linux Local Security Checks
medium
109165Oracle Secure Global Desktop Multiple Vulnerabilities (April 2018 CPU)NessusMisc.
high
109112Oracle Linux 7 : openssl (ELSA-2018-0998)NessusOracle Linux Local Security Checks
medium
108993RHEL 7 : openssl (RHSA-2018:0998)NessusRed Hat Local Security Checks
medium
108730Debian DSA-4157-1 : openssl - security updateNessusDebian Local Security Checks
medium
108681FreeBSD : OpenSSL -- multiple vulnerabilities (b7cff5a9-31cc-11e8-8f07-b499baebfeaf)NessusFreeBSD Local Security Checks
medium
106563Tenable SecurityCenter OpenSSL 1.0.2 < 1.0.2n Multiple VulnerabilitiesNessusMisc.
medium
106547openSUSE Security Update : nodejs6 (openSUSE-2018-116)NessusSuSE Local Security Checks
critical
106507pfSense 2.3.x < 2.3.5-p1 / 2.4.x < 2.4.2-p1 Multiple Vulnerabilities (SA-17_10 / SA-17_11)NessusFirewalls
medium
106092SUSE SLES12 Security Update : CaaS Platform 2.0 images (SUSE-SU-2018:0053-1)NessusSuSE Local Security Checks
critical
105638openSUSE Security Update : nodejs4 (openSUSE-2018-5)NessusSuSE Local Security Checks
critical
105353SUSE SLED12 / SLES12 Security Update : openssl (SUSE-SU-2017:3343-1)NessusSuSE Local Security Checks
medium
105341openSUSE Security Update : openssl (openSUSE-2017-1381)NessusSuSE Local Security Checks
medium
105329Debian DSA-4065-1 : openssl1.0 - security updateNessusDebian Local Security Checks
medium
105292OpenSSL 1.1.0 < 1.1.0h AVX2 Montgomery Multiplication Private Key Derivation WeaknessNessusWeb Servers
medium
105291OpenSSL 1.0.2 < 1.0.2n Multiple VulnerabilitiesNessusWeb Servers
medium
105263GLSA-201712-03 : OpenSSL: Multiple vulnerabilitiesNessusGentoo Local Security Checks
medium
105259FreeBSD : node.js -- Data Confidentiality/Integrity Vulnerability, December 2017 (bea84a7a-e0c9-11e7-b4f3-11baa0c2df21)NessusFreeBSD Local Security Checks
critical
105173Ubuntu 16.04 LTS / 17.04 / 17.10 : openssl vulnerabilities (USN-3512-1)NessusUbuntu Local Security Checks
medium
105141FreeBSD : FreeBSD -- OpenSSL multiple vulnerabilities (9f7a0f39-ddc0-11e7-b5af-a4badb2f4699)NessusFreeBSD Local Security Checks
medium
105113Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : openssl (SSA:2017-342-01)NessusSlackware Local Security Checks
medium
105090FreeBSD : OpenSSL -- multiple vulnerabilities (3bb451fc-db64-11e7-ac58-b499baebfeaf)NessusFreeBSD Local Security Checks
medium