QwikSec

Security Database

CVE

CWE

Training

CVE-2017-13098

Published: Dec 13, 2017

Modified: Sep 16, 2024

PUBLISHED

CVSS v3.0

7.5

HIGH

Description

BouncyCastle TLS prior to version 1.0.3, when configured to use the JCE (Java Cryptography Extension) for cryptographic functions, provides a weak Bleichenbacher oracle when any TLS cipher suite using RSA key exchange is negotiated. An attacker can recover the private key from a vulnerable application. This vulnerability is referred to as "ROBOT."

Vendor	Product	Versions
Legion of the Bouncy Castle	BouncyCastle TLS	affected `<1.0.3`

Weaknesses (CWE)

CVSS v3.0 Details

CVSS v3.0 Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

References

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_CERT-VN

vendor-advisory

x_refsource_DEBIAN

openSUSE-SU-2020:0607

vendor-advisory

x_refsource_SUSE

https://www.oracle.com/security-alerts/cpuoct2020.html

x_refsource_MISC

https://robotattack.org/

x_refsource_MISC

https://github.com/bcgit/bc-java/commit/a00b684465b38d722ca9a3543b8af8568e6bad5c

x_refsource_CONFIRM

https://security.netapp.com/advisory/ntap-20171222-0001/

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.