Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

fstec логотип

BDU:2022-04941

Опубликовано: 10 авг. 2022
Источник: fstec
CVSS3: 7.4
CVSS2: 7.1
EPSS Низкий

Описание

Уязвимость функции обработки ключей RSA микропрограммного обеспечения межсетевых экранов Cisco Adaptive Security Appliance (ASA) и Cisco Firepower Threat Defense (FTD) связана с использованием жестко закодированных учетных данных. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вычислять закрытые ключи RSA, используя атаку по боковому каналу Lenstra

Вендор

Cisco Systems Inc.

Наименование ПО

Adaptive Security Appliance
Firepower Threat Defense

Версия ПО

от 9.16 до 9.16.3.19 (Adaptive Security Appliance)
от 9.17 до 9.17.1.13 (Adaptive Security Appliance)
от 9.18 до 9.18.2 (Adaptive Security Appliance)
от 7.0.0 до 7.0.4 (Firepower Threat Defense)
от 7.1.0 до Cisco_FTD_Hotfix_P-7.1.0.2-2.sh.REL.tar (Firepower Threat Defense)
от 7.1.0 до Cisco_FTD_SSP_FP1K_Hotfix_P-7.1.0.2-2.sh.REL.tar (Firepower Threat Defense)
от 7.1.0 до Cisco_FTD_SSP_FP2K_Hotfix_P-7.1.0.2-2.sh.REL.tar (Firepower Threat Defense)
от 7.1.0 до Cisco_FTD_SSP_Hotfix_P-7.1.0.2-2.sh.REL.tar (Firepower Threat Defense)
от 7.1.0 до Cisco_FTD_SSP_FP3K_Hotfix_Q-7.1.0.3-2.sh.REL.tar (Firepower Threat Defense)
от 7.2.0 до 7.2.0.1 (Firepower Threat Defense)

Тип ПО

ПО сетевого программно-аппаратного средства
ПО программно-аппаратного средства

Операционные системы и аппаратные платформы

-

Уровень опасности уязвимости

Высокий уровень опасности (базовая оценка CVSS 2.0 составляет 7,1)
Высокий уровень опасности (базовая оценка CVSS 3.0 составляет 7,4)

Возможные меры по устранению уязвимости

Использование рекомендаций:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-rsa-key-leak-Ms7UEfZz

Статус уязвимости

Подтверждена производителем

Наличие эксплойта

Данные уточняются

Информация об устранении

Уязвимость устранена

Ссылки на источники

Идентификаторы других систем описаний уязвимостей

EPSS

Процентиль: 93%
0.09847
Низкий

7.4 High

CVSS3

7.1 High

CVSS2

Связанные уязвимости

nvd логотип

CVE-2022-20866

CVSS3: 7.4
nvd
больше 3 лет назад

A vulnerability in the handling of RSA keys on devices running Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to retrieve an RSA private key. This vulnerability is due to a logic error when the RSA key is stored in memory on a hardware platform that performs hardware-based cryptography. An attacker could exploit this vulnerability by using a Lenstra side-channel attack against the targeted device. A successful exploit could allow the attacker to retrieve the RSA private key. The following conditions may be observed on an affected device: This vulnerability will apply to approximately 5 percent of the RSA keys on a device that is running a vulnerable release of Cisco ASA Software or Cisco FTD Software; not all RSA keys are expected to be affected due to mathematical calculations applied to the RSA key. The RSA key could be valid but have specific characteristics that make it vulnerable to

github логотип

GHSA-96q7-c2w2-93p8

CVSS3: 7.5
github
больше 3 лет назад

A vulnerability in the handling of RSA keys on devices running Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to retrieve an RSA private key. This vulnerability is due to a logic error when the RSA key is stored in memory on a hardware platform that performs hardware-based cryptography. An attacker could exploit this vulnerability by using a Lenstra side-channel attack against the targeted device. A successful exploit could allow the attacker to retrieve the RSA private key. The following conditions may be observed on an affected device: This vulnerability will apply to approximately 5 percent of the RSA keys on a device that is running a vulnerable release of Cisco ASA Software or Cisco FTD Software; not all RSA keys are expected to be affected due to mathematical calculations applied to the RSA key. The RSA key could be valid but have specific characteristics that make it vulnerable...

EPSS

Процентиль: 93%
0.09847
Низкий

7.4 High

CVSS3

7.1 High

CVSS2