CVE-2015-7940
bouncycastle: Invalid curve attack allowing to extract private keys
Severity Score
3.7
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The Bouncy Castle Java library before 1.51 does not validate a point is withing the elliptic curve, which makes it easier for remote attackers to obtain private keys via a series of crafted elliptic curve Diffie Hellman (ECDH) key exchanges, aka an "invalid curve attack."
La librería Bouncy Castle Java en versiones anteriores a 1.51 no valida un punto que se encuentra dentro de la curva elíptica, lo que facilita a atacantes remotos obtener claves privadas a través de una serie de intercambios de clave de curva elíptica Diffie Hellman (ECDH) manipulados, también conocida como un 'ataque de curva no válida'.
It was found that bouncycastle is vulnerable to an invalid curve attack. An attacker could extract private keys used in elliptic curve cryptography with a few thousand queries.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2015-10-22 CVE Reserved
- 2015-11-09 CVE Published
- 2023-06-27 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
- CWE-310: Cryptographic Issues
- CWE-358: Improperly Implemented Security Check for Standard
CAPEC
References (23)
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.fedoraproject.org/pipermail/package-announce/2016-January/174915.html | 2019-01-16 | |
| http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00012.html | 2019-01-16 | |
| http://rhn.redhat.com/errata/RHSA-2016-2035.html | 2019-01-16 | |
| http://rhn.redhat.com/errata/RHSA-2016-2036.html | 2019-01-16 | |
| http://www.debian.org/security/2015/dsa-3417 | 2019-01-16 | |
| https://usn.ubuntu.com/3727-1 | 2019-01-16 | |
| https://access.redhat.com/security/cve/CVE-2015-7940 | 2016-10-06 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1276272 | 2016-10-06 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Opensuse Search vendor "Opensuse" | Leap Search vendor "Opensuse" for product "Leap" | 42.1 Search vendor "Opensuse" for product "Leap" and version "42.1" | - |
Affected
| ||||||
| Opensuse Search vendor "Opensuse" | Opensuse Search vendor "Opensuse" for product "Opensuse" | 13.1 Search vendor "Opensuse" for product "Opensuse" and version "13.1" | - |
Affected
| ||||||
| Opensuse Search vendor "Opensuse" | Opensuse Search vendor "Opensuse" for product "Opensuse" | 13.2 Search vendor "Opensuse" for product "Opensuse" and version "13.2" | - |
Affected
| ||||||
| Bouncycastle Search vendor "Bouncycastle" | Bouncy Castle Crypto Package Search vendor "Bouncycastle" for product "Bouncy Castle Crypto Package" | <= 1.50 Search vendor "Bouncycastle" for product "Bouncy Castle Crypto Package" and version " <= 1.50" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Application Testing Suite Search vendor "Oracle" for product "Application Testing Suite" | 12.5.0.1 Search vendor "Oracle" for product "Application Testing Suite" and version "12.5.0.1" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Application Testing Suite Search vendor "Oracle" for product "Application Testing Suite" | 12.5.0.2 Search vendor "Oracle" for product "Application Testing Suite" and version "12.5.0.2" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Application Testing Suite Search vendor "Oracle" for product "Application Testing Suite" | 12.5.0.3 Search vendor "Oracle" for product "Application Testing Suite" and version "12.5.0.3" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Enterprise Manager Ops Center Search vendor "Oracle" for product "Enterprise Manager Ops Center" | 12.1.4 Search vendor "Oracle" for product "Enterprise Manager Ops Center" and version "12.1.4" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Enterprise Manager Ops Center Search vendor "Oracle" for product "Enterprise Manager Ops Center" | 12.2.2 Search vendor "Oracle" for product "Enterprise Manager Ops Center" and version "12.2.2" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Peoplesoft Enterprise Peopletools Search vendor "Oracle" for product "Peoplesoft Enterprise Peopletools" | 8.54 Search vendor "Oracle" for product "Peoplesoft Enterprise Peopletools" and version "8.54" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Peoplesoft Enterprise Peopletools Search vendor "Oracle" for product "Peoplesoft Enterprise Peopletools" | 8.55 Search vendor "Oracle" for product "Peoplesoft Enterprise Peopletools" and version "8.55" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Virtual Desktop Infrastructure Search vendor "Oracle" for product "Virtual Desktop Infrastructure" | 3.5.2 Search vendor "Oracle" for product "Virtual Desktop Infrastructure" and version "3.5.2" | - |
Affected
| ||||||