1. EXECUTIVE SUMMARY
- CVSS v4 8.2
- ATTENTION: Exploitable remotely
- Vendor: Hitachi Energy
- Equipment: Relion 670, 650, SAM600-IO Series
- Vulnerability: Observable Discrepancy
2. RISK EVALUATION
Successful exploitation of this vulnerability could allow an attacker to decrypt application data in transit.
3. TECHNICAL DETAILS
3.1 AFFECTED PRODUCTS
Hitachi Energy reports that the following products are affected:
- Relion 670: Version 2.2.0
- Relion 670: Version 2.2.1
- Relion 650: Version 2.2.0
- Relion 650: Version 2.2.1
- Relion 670: Versions 2.2.2.0 through 2.2.2.5
- Relion 670: Versions 2.2.3.0 through 2.2.3.6
- Relion 670: Versions 2.2.4.0 through 2.2.4.3
- Relion 650: Versions 2.2.4.0 through 2.2.4.3
- Relion 670: Versions 2.2.5.0 through 2.2.5.5
- Relion 650: Versions 2.2.5.0 through 2.2.5.5
- SAM600-IO: Version 2.2.1
- SAM600-IO: Versions from 2.2.5.0 up to but not including, 2.2.5.5
3.2 VULNERABILITY OVERVIEW
3.2.1 OBSERVABLE DISCREPANCY CWE-203
A timing-based side channel exists in the OpenSSL RSA decryption implementation, which could be sufficient to recover a plaintext across a network in a Bleichenbacher-style attack. To achieve a successful decryption, an attacker would have to send a very large number of trial messages for decryption. The vulnerability affects all RSA padding modes: PKCS#1 v1.5, RSA-OEAP and RSASVE. For example, in a TLS connection, RSA is commonly used by a client to send an encrypted pre-master secret to the server. An attacker that had observed a genuine connection between a client and a server could use this flaw to send trial messages to the server and record the time taken to process them. After a sufficiently large number of messages the attacker could recover the pre-master secret used for the original connection and thus be able to decrypt the appl
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
Read the original article: