CVE Vulnerability

CVE-2018-15836

In verify_signed_hash() in lib/liboswkeys/signatures.c in Openswan before 2.6.50.1, the RSA implementation does not verify the value of padding string during PKCS#1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used. IKEv2 signature verification is affected when RAW RSA keys are used.

5 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

Scope

7.5 /10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://lists.openswan.org/pipermail/users/2018-August/023761.html Release Notes Vendor Advisory
https://github.com/xelerance/Openswan/commit/0b460be9e287fd335c8ce58129c67bf06065ef51 Patch Vendor Advisory
https://github.com/xelerance/Openswan/commit/9eaa6c2a823c1d2b58913506a15f9474bf857a3d Patch Vendor Advisory
Configurations

Configuration 1

cpe:2.3:a:xelerance:openswan:*:*:*:*:*:*:*:*
Information

Published : 2018-09-26 09:29

Updated : 2019-01-10 05:52

NVD link : CVE-2018-15836

Mitre link : CVE-2018-15836

Products Affected
No products.
CWE
CWE-347

Improper Verification of Cryptographic Signature