CVE-2018-0737

MEDIUM

Description

The OpenSSL RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2b-1.0.2o).

References

http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html

http://www.securityfocus.com/bid/103766

http://www.securitytracker.com/id/1040685

https://access.redhat.com/errata/RHSA-2018:3221

https://access.redhat.com/errata/RHSA-2018:3505

https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=349a41da1ad88ad87825414752a8ff5fdd6a6c3f

https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=6939eab03a6e23d2bd2c3f5e34fe1d48e542e787

https://lists.debian.org/debian-lts-announce/2018/07/msg00043.html

https://nodejs.org/en/blog/vulnerability/august-2018-security-releases/

https://security.gentoo.org/glsa/201811-21

https://security.netapp.com/advisory/ntap-20180726-0003/

https://securityadvisories.paloaltonetworks.com/Home/Detail/133

https://usn.ubuntu.com/3628-1/

https://usn.ubuntu.com/3628-2/

https://usn.ubuntu.com/3692-1/

https://usn.ubuntu.com/3692-2/

https://www.debian.org/security/2018/dsa-4348

https://www.debian.org/security/2018/dsa-4355

https://www.openssl.org/news/secadv/20180416.txt

https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

https://www.tenable.com/security/tns-2018-12

https://www.tenable.com/security/tns-2018-13

https://www.tenable.com/security/tns-2018-14

https://www.tenable.com/security/tns-2018-17

Details

Source: MITRE

Published: 2018-04-16

Modified: 2019-01-16

Type: CWE-310

Risk Information

CVSS v2.0

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3.0

Base Score: 5.9

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 2.2

Severity: MEDIUM

Tenable Plugins

View all (47 total)

ID	Name	Product	Family	Severity
121252	Oracle Primavera P6 Enterprise Project Portfolio Management (EPPM) Multiple Vulnerabilities (Jan 2019 CPU)	Nessus	CGI abuses	medium
121225	Oracle Enterprise Manager Cloud Control (Jan 2019 CPU)	Nessus	Misc.	high
121069	Junos OS: OpenSSL Security Advisories [16 Apr 2018] and [12 June 2018] (JSA10919)	Nessus	Junos Local Security Checks	medium
120997	EulerOS 2.0 SP5 : openssl (EulerOS-SA-2019-1009)	Nessus	Huawei Local Security Checks	medium
120424	Fedora 28 : 1:openssl (2018-520e4c5b4e)	Nessus	Fedora Local Security Checks	medium
120198	Tenable Nessus < 7.1.4 Multiple Vulnerabilities (TNS-2018-17)	Nessus	Misc.	medium
120115	SUSE SLES15 Security Update : openssl-1_0_0 (SUSE-SU-2018:2965-1)	Nessus	SuSE Local Security Checks	medium
119909	EulerOS 2.0 SP2 : openssl (EulerOS-SA-2018-1420)	Nessus	Huawei Local Security Checks	medium
119792	Debian DSA-4355-1 : openssl1.0 - security update	Nessus	Debian Local Security Checks	medium
119520	EulerOS 2.0 SP3 : openssl (EulerOS-SA-2018-1392)	Nessus	Huawei Local Security Checks	medium
119313	Debian DSA-4348-1 : openssl - security update	Nessus	Debian Local Security Checks	medium
119275	GLSA-201811-21 : OpenSSL: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	medium
119194	Scientific Linux Security Update : openssl on SL7.x x86_64	Nessus	Scientific Linux Local Security Checks	medium
119116	SUSE SLES12 Security Update : openssl (SUSE-SU-2018:3864-1)	Nessus	SuSE Local Security Checks	medium
119074	EulerOS Virtualization 2.5.1 : openssl (EulerOS-SA-2018-1383)	Nessus	Huawei Local Security Checks	medium
118998	CentOS 7 : openssl (CESA-2018:3221)	Nessus	CentOS Local Security Checks	medium
118937	Node.js multiple vulnerabilities (August 2018 Security Releases).	Nessus	Misc.	medium
118777	Oracle Linux 7 : openssl (ELSA-2018-3221)	Nessus	Oracle Linux Local Security Checks	medium
118534	RHEL 7 : openssl (RHSA-2018:3221)	Nessus	Red Hat Local Security Checks	medium
118399	Tenable Log Correlation Engine (LCE) < 5.1.1 (TNS-2018-13)	Nessus	Misc.	medium
118398	Tenable Nessus < 8.0.0 Multiple Vulnerabilities (TNS-2018-14)	Nessus	Misc.	medium
118296	SUSE SLES12 Security Update : openssl (SUSE-SU-2018:2928-2)	Nessus	SuSE Local Security Checks	medium
118106	Oracle Linux 7 : openssl (ELSA-2018-4249)	Nessus	Oracle Linux Local Security Checks	medium
118105	Oracle Linux 6 : openssl (ELSA-2018-4248)	Nessus	Oracle Linux Local Security Checks	medium
117977	openSUSE Security Update : openssl-1_0_0 (openSUSE-2018-1110)	Nessus	SuSE Local Security Checks	medium
117891	Fedora 27 : 1:openssl (2018-02a38af202)	Nessus	Fedora Local Security Checks	medium
117858	SUSE SLED12 / SLES12 Security Update : openssl (SUSE-SU-2018:2928-1)	Nessus	SuSE Local Security Checks	medium
117857	openSUSE Security Update : openssl (openSUSE-2018-1091)	Nessus	SuSE Local Security Checks	medium
117749	EulerOS 2.0 SP2 : openssl110f (EulerOS-SA-2018-1306)	Nessus	Huawei Local Security Checks	medium
117672	Tenable SecurityCenter < 5.7.1 Multiple Vulnerabilities (TNS-2018-12)	Nessus	Misc.	high
117476	openSUSE Security Update : compat-openssl098 (openSUSE-2018-997)	Nessus	SuSE Local Security Checks	medium
117450	SUSE SLED12 / SLES12 Security Update : compat-openssl098 (SUSE-SU-2018:2683-1)	Nessus	SuSE Local Security Checks	medium
112145	SUSE SLES12 Security Update : openssl (SUSE-SU-2018:2492-1)	Nessus	SuSE Local Security Checks	medium
112120	OpenSSL 1.1.0 < 1.1.0i Multiple Vulnerabilities	Nessus	Web Servers	medium
112119	OpenSSL 1.0.x < 1.0.2p Multiple Vulnerabilities	Nessus	Web Servers	medium
112108	SUSE SLES11 Security Update : openssl (SUSE-SU-2018:2486-1)	Nessus	SuSE Local Security Checks	medium
111962	Photon OS 2.0: Openssl PHSA-2018-2.0-0078	Nessus	PhotonOS Local Security Checks	medium
111737	Slackware 14.2 / current : openssl (SSA:2018-226-01)	Nessus	Slackware Local Security Checks	medium
111390	Debian DLA-1449-1 : openssl security update	Nessus	Debian Local Security Checks	medium
111354	AIX OpenSSL Advisory : openssl_advisory27.asc	Nessus	AIX Local Security Checks	medium
111275	Photon OS 1.0 : openssl / libsoup (PhotonOS-PHSA-2018-1.0-0149)	Nessus	PhotonOS Local Security Checks	high
110878	EulerOS 2.0 SP3 : openssl110f (EulerOS-SA-2018-1214)	Nessus	Huawei Local Security Checks	medium
110721	Ubuntu 14.04 LTS / 16.04 LTS / 17.10 / 18.04 LTS : openssl, openssl1.0 vulnerabilities (USN-3692-1)	Nessus	Ubuntu Local Security Checks	medium
109364	Amazon Linux 2 : openssl (ALAS-2018-1004)	Nessus	Amazon Linux Local Security Checks	medium
109200	Ubuntu 14.04 LTS / 16.04 LTS / 17.10 : openssl vulnerability (USN-3628-1)	Nessus	Ubuntu Local Security Checks	medium
109182	Amazon Linux AMI : openssl (ALAS-2018-1000)	Nessus	Amazon Linux Local Security Checks	medium
109066	FreeBSD : OpenSSL -- Cache timing vulnerability (8f353420-4197-11e8-8777-b499baebfeaf)	Nessus	FreeBSD Local Security Checks	medium