CVE-2015-5738

The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack.

CVSS v3 7.5 HIGH
CVSS v2.0 5.0 MEDIUM

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions	Broken Link
https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf	Technical Description Third Party Advisory
https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html	Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:a:marvell:software_development_kit:2.0:*:*:*:*:*:*:*

OR	cpe:2.3:h:marvell:octeon_ii_cn6000:-:::::::*
	cpe:2.3:h:marvell:octeon_ii_cn6010:-:::::::*
	cpe:2.3:h:marvell:octeon_ii_cn6020:-:::::::*

Configuration 2 (hide)

OR	cpe:2.3:a:f5:traffix_signaling_delivery_controller::::::::
	cpe:2.3:a:f5:traffix_signaling_delivery_controller::::::::

History

16 Aug 2023, 14:17

Type	Values Removed	Values Added
CPE	cpe:2.3:a:f5:traffix_sdc::::::::	cpe:2.3:a:f5:traffix_signaling_delivery_controller::::::::

Information

Published : 2016-07-26 17:59

Updated : 2024-02-04 18:53

NVD link : CVE-2015-5738

Mitre link : CVE-2015-5738

CVE.ORG link : CVE-2015-5738

JSON object : View

Products Affected

marvell

octeon_ii_cn6020
octeon_ii_cn6010
octeon_ii_cn6000
software_development_kit

f5

traffix_signaling_delivery_controller

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

{"id": "CVE-2015-5738", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": true, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2016-07-26T17:59:00.137", "references": [{"url": "http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions", "tags": ["Broken Link"], "source": "cve@mitre.org"}, {"url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf", "tags": ["Technical Description", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack."}, {"lang": "es", "value": "La implementaci\u00f3n de RSA-CRT en Cavium Software Development Kit (SDK) 2.x cuando es utilizada en Hardware OCTEON II CN6xxx en Linux para soporte TLS con Perfect Forward Secrecy (PFS), facilita a atacantes remotos obtener claves RSA privadas llevando a cabo un ataque de canal lateral Lenstra."}], "lastModified": "2023-08-16T14:17:11.363", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:marvell:software_development_kit:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E332EC67-B3F5-437D-BC1F-D563B89181B8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:marvell:octeon_ii_cn6000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E31C6DFB-101A-493A-8515-4DAAB9F3A821"}, {"criteria": "cpe:2.3:h:marvell:octeon_ii_cn6010:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "521C4A1A-96A2-4888-A345-8A153B793178"}, {"criteria": "cpe:2.3:h:marvell:octeon_ii_cn6020:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "94651B37-ABBE-4400-8880-033A4EDAB41F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:traffix_signaling_delivery_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "90B753A2-3CC6-46A2-82C4-F2B7A029E18C", "versionEndIncluding": "3.5.1", "versionStartIncluding": "3.3.2"}, {"criteria": "cpe:2.3:a:f5:traffix_signaling_delivery_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0AAD5D5-E970-4875-8FDF-E940D9F00636", "versionEndIncluding": "4.4.0", "versionStartIncluding": "4.0.0"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}