The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)ater attack. The client needs very little CPU resources and network bandwidth. The attack may be more disruptive in cases where a client can require a server to select its largest supported key size. The basic attack scenario is that the client must claim that it can only communicate with DHE, and the server must be configured to allow DHE.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
|
History
20 Nov 2024, 23:42
Type | Values Removed | Values Added |
---|---|---|
References | () https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf - Third Party Advisory | |
References | () https://dheatattack.com - Third Party Advisory | |
References | () https://dheatattack.gitlab.io/ - | |
References | () https://github.com/Balasys/dheater - Product | |
References | () https://github.com/mozilla/ssl-config-generator/issues/162 - Issue Tracking | |
References | () https://gitlab.com/dheatattack/dheater - | |
References | () https://ieeexplore.ieee.org/document/10374117 - | |
References | () https://support.f5.com/csp/article/K83120834 - Third Party Advisory | |
References | () https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-004.txt - Third Party Advisory | |
References | () https://www.openssl.org/blog/blog/2022/10/21/tls-groups-configuration/ - Third Party Advisory | |
References | () https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ - Issue Tracking | |
References | () https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol - Exploit, Technical Description | |
References | () https://www.suse.com/support/kb/doc/?id=000020510 - Third Party Advisory |
23 Apr 2024, 07:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
16 Aug 2023, 14:17
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:f5:traffix_sdc:5.2.0:*:*:*:*:*:*:* |
cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.1.0:*:*:*:*:*:*:* cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.2.0:*:*:*:*:*:*:* |
19 Jul 2023, 00:55
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:* cpe:2.3:a:stormshield:stormshield_management_center:*:*:*:*:*:*:*:* |
16 May 2023, 16:15
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.suse.com/support/kb/doc/?id=000020510 - Third Party Advisory | |
References | (MISC) https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol - Exploit, Technical Description | |
References | (MISC) https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ - Issue Tracking | |
References | (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf - Third Party Advisory | |
References | (MISC) https://support.f5.com/csp/article/K83120834 - Third Party Advisory | |
References | (MISC) https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-004.txt - Third Party Advisory | |
References | (MISC) https://github.com/Balasys/dheater - Product | |
References | (MISC) https://dheatattack.com - Third Party Advisory | |
References | (MISC) https://www.openssl.org/blog/blog/2022/10/21/tls-groups-configuration/ - Third Party Advisory | |
References | (MISC) https://github.com/mozilla/ssl-config-generator/issues/162 - Issue Tracking | |
CPE | cpe:2.3:h:hpe:aruba_cx_8400:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_w1750d_firmware:*:*:*:*:*:*:*:* cpe:2.3:a:f5:traffix_sdc:5.1.0:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:* cpe:2.3:a:f5:f5os-c:1.5.1:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:* cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_6410:-:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_8360-48y6c:-:*:*:*:*:*:*:* cpe:2.3:a:f5:big-iq_centralized_management:*:*:*:*:*:*:*:* cpe:2.3:o:suse:linux_enterprise_server:11:-:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_6300f:-:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_8360-48xt4c:-:*:*:*:*:*:*:* cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_6200f:-:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:* cpe:2.3:a:f5:f5os-a:1.3.0:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_6100:-:*:*:*:*:*:*:* cpe:2.3:a:f5:f5os-a:1.3.1:*:*:*:*:*:*:* cpe:2.3:o:suse:linux_enterprise_server:15:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:* cpe:2.3:a:f5:traffix_sdc:5.2.0:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:* cpe:2.3:a:f5:f5os-c:1.5.0:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_4100i:-:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_8360-16y2c:-:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_8325-48y8c:-:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_8360-24xf2c:-:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_service_proxy:1.6.0:*:*:*:*:kubernetes:*:* cpe:2.3:h:hpe:aruba_cx_6200m:-:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_6405:-:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_8360-12c:-:*:*:*:*:*:*:* cpe:2.3:a:f5:f5os-c:*:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_6300m:-:*:*:*:*:*:*:* cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_8320:-:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_8360-32y4c:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_w1750d:-:*:*:*:*:*:*:* cpe:2.3:a:f5:big-iq_centralized_management:7.1.0:*:*:*:*:*:*:* cpe:2.3:h:hpe:aruba_cx_8325-32c:-:*:*:*:*:*:*:* |
09 Nov 2022, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
08 Nov 2022, 14:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
16 Nov 2021, 15:36
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
References | (MISC) https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ - Third Party Advisory | |
References | (MISC) https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol - Exploit, Third Party Advisory | |
References | (MISC) https://github.com/mozilla/ssl-config-generator/issues/162 - Third Party Advisory | |
References | (MISC) https://github.com/Balasys/dheater - Third Party Advisory | |
CWE | CWE-400 | |
CPE | cpe:2.3:a:balasys:dheater:-:*:*:*:*:*:*:* |
12 Nov 2021, 16:28
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-11-11 19:15
Updated : 2024-11-20 23:42
NVD link : CVE-2002-20001
Mitre link : CVE-2002-20001
CVE.ORG link : CVE-2002-20001
JSON object : View
Products Affected
f5
- big-ip_application_security_manager
- big-ip_global_traffic_manager
- big-ip_service_proxy
- big-ip_websafe
- big-ip_domain_name_system
- big-ip_link_controller
- big-iq_centralized_management
- big-ip_advanced_web_application_firewall
- big-ip_edge_gateway
- f5os-a
- big-ip_analytics
- big-ip_policy_enforcement_manager
- big-ip_application_acceleration_manager
- big-ip_fraud_protection_service
- big-ip_webaccelerator
- big-ip_ssl_orchestrator
- big-ip_application_visibility_and_reporting
- f5os-c
- big-ip_ddos_hybrid_defender
- big-ip_local_traffic_manager
- big-ip_carrier-grade_nat
- traffix_signaling_delivery_controller
- big-ip_advanced_firewall_manager
- big-ip_access_policy_manager
hpe
- aruba_cx_6300f
- aruba_cx_6410
- aruba_cx_6200f
- aruba_cx_4100i
- aruba_cx_8360-16y2c
- aruba_cx_8360-48y6c
- aruba_cx_8325-32c
- aruba_cx_8360-24xf2c
- aruba_cx_8400
- aruba_cx_8360-48xt4c
- aruba_cx_6200m
- aruba_cx_6300m
- aruba_cx_6100
- aruba_cx_6405
- aruba_cx_8325-48y8c
- arubaos-cx
- aruba_cx_8320
- aruba_cx_8360-12c
- aruba_cx_8360-32y4c
stormshield
- stormshield_management_center
- stormshield_network_security
siemens
- scalance_w1750d_firmware
- scalance_w1750d
suse
- linux_enterprise_server
balasys
- dheater
CWE
CWE-400
Uncontrolled Resource Consumption