CVE-2017-16007

Опубликовано: 04 июн. 2018

Источник: nvd

CVSS3: 5.9

CVSS2: 4.3

EPSS Низкий

Описание

node-jose is a JavaScript implementation of the JSON Object Signing and Encryption (JOSE) for current web browsers and node.js-based servers. node-jose earlier than version 0.9.3 is vulnerable to an invalid curve attack. This allows an attacker to recover the private secret key when JWE with Key Agreement with Elliptic Curve Diffie-Hellman Ephemeral Static (ECDH-ES) is used.

Ссылки

http://blog.intothesymmetry.com/2017/03/critical-vulnerability-in-json-web.html
Exploit
Third Party Advisory
https://gist.github.com/asanso/fa25685348051ef6a28d49aa0f27a4ae
Patch
Third Party Advisory
https://github.com/cisco/node-jose
Third Party Advisory
https://nodesecurity.io/advisories/324
Third Party Advisory
http://blog.intothesymmetry.com/2017/03/critical-vulnerability-in-json-web.html
Exploit
Third Party Advisory
https://gist.github.com/asanso/fa25685348051ef6a28d49aa0f27a4ae
Patch
Third Party Advisory
https://github.com/cisco/node-jose
Third Party Advisory
https://nodesecurity.io/advisories/324
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cisco:node-jose:*:*:*:*:*:node.js:*:*

Версия до 0.9.3 (исключая)

EPSS

Процентиль: 48%

0.00249

Низкий

5.9 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-200

NVD-CWE-noinfo

Связанные уязвимости

GHSA-rvj9-8cvx-3vq9