Vulnerability Name:

CVE-2017-3732

Assigned:2016-12-16
Published:2017-01-26
Updated:2018-07-13
Summary:There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.
CVSS v3 Severity:5.9 Medium (CVSS v3 Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)
5.2 Medium (Temporal CVSS v3 Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): None
5.3 Medium (CCN CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
4.6 Medium (CCN Temporal CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-200
References:Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Source: BID
Type: VENDOR_ADVISORY
95814

Source: SECTRACK
Type: UNKNOWN
1037717

Source: REDHAT
Type: UNKNOWN
RHSA-2018:2185

Source: REDHAT
Type: UNKNOWN
RHSA-2018:2186

Source: REDHAT
Type: UNKNOWN
RHSA-2018:2187

Source: XF
Type: UNKNOWN
openssl-cve20173732-info-disc(121313)

Source: MISC
Type: UNKNOWN
https://github.com/openssl/openssl/commit/a59b90bf491410f1f2bc4540cc21f1980fd14c5b

Source: FREEBSD
Type: UNKNOWN
FreeBSD-SA-17:02

Source: GENTOO
Type: UNKNOWN
GLSA-201702-07

Source: CONFIRM
Type: VENDOR_ADVISORY
https://www.openssl.org/news/secadv/20170126.txt

Source: CONFIRM
Type: UNKNOWN
https://www.tenable.com/security/tns-2017-04

Vulnerable Configuration:Configuration 1:
  • cpe:/a:openssl:openssl:1.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2:beta1:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2:beta2:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2:beta3:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2a:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2b:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2c:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2d:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2e:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2f:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2h:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2i:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.1.0a:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.1.0b:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.1.0c:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:openssl:openssl:1.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.1.0:*:*:*:*:*:*:*
  • AND
  • cpe:/a:ibm:infosphere_master_data_management:10.1::~~collaborative~~~:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_information_server:9.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_business_intelligence:10.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_business_intelligence:10.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sterling_b2b_integrator:5.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sametime:8.5.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sametime:8.5.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_insight:1.1.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_insight:1.1.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_master_data_management:11.0::~~collaborative~~~:*:*:*:*:*
  • OR cpe:/a:ibm:integration_bus:9.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_business_intelligence:10.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:campaign:9.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sametime:9.0.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sametime:9.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_business_intelligence:10.2.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sterling_b2b_integrator:5.2.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_tm1:10.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_information_server:11.3:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:i:7.1:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:i:7.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sterling_b2b_integrator:5.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sterling_b2b_integrator:5.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sterling_b2b_integrator:5.2.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_master_data_management:11.3::~~collaborative~~~:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_master_data_management:11.4::~~collaborative~~~:*:*:*:*:*
  • OR cpe:/a:ibm:rational_insight:1.1.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_tm1:10.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_software_architect:9.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_software_architect:9.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_business_intelligence:10.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sterling_b2b_integrator:5.2.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:campaign:9.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_software_architect:9.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_information_server:11.5:*:*:*:*:*:*:*
  • OR cpe:/h:ibm:flex_system_manager_node_7955:-:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:systems_director:5.20:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_protect_for_virtual_environments:7.1::~~~vmware~~:*:*:*:*:*
  • OR cpe:/a:oracle:jd_edwards_enterpriseone_tools:9.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:agile_engineering_data_management:6.1.3.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_master_data_management:11.5::~~collaborative~~~:*:*:*:*:*
  • OR cpe:/a:ibm:integration_bus:10.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_software_architect:9.1.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:campaign:9.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sterling_b2b_integrator:5.2.6:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:tuxedo:12.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:api_gateway:11.1.2.4.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:transportation_management:6.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:transportation_management:6.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:agile_engineering_data_management:6.2.0.0:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:i:7.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sametime:9.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:enterprise_manager_ops_center:12.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:enterprise_manager_ops_center:12.3.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:endeca_server:7.3.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:endeca_server:7.4.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:endeca_server:7.5.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:endeca_server:7.6.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:communications_security_gateway:3.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:enterprise_manager:12.1.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spss_statistics:23.0.0.3:*:*:*:*:*:*:*

  • Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20173732
    V
    CVE-2017-3732
    2018-07-14
    oval:com.ubuntu.trusty:def:20173732000
    V
    CVE-2017-3732 on Ubuntu 14.04 LTS (trusty) - medium.
    2017-05-04
    oval:com.ubuntu.xenial:def:20173732000
    V
    CVE-2017-3732 on Ubuntu 16.04 LTS (xenial) - medium.
    2017-05-04
    oval:org.cisecurity:def:1950
    V
    Vulnerability in OpenSSL 1.1.0 before 1.1.0d and OpenSSL 1.0.2 before 1.0.2k - CVE-2017-3732
    2017-03-10
    oval:com.ubuntu.precise:def:20173732000
    V
    CVE-2017-3732 on Ubuntu 12.04 LTS (precise) - medium.
    2017-01-26
    BACK
    openssl openssl 1.0.2
    openssl openssl 1.0.2 beta1
    openssl openssl 1.0.2 beta2
    openssl openssl 1.0.2 beta3
    openssl openssl 1.0.2a
    openssl openssl 1.0.2b
    openssl openssl 1.0.2c
    openssl openssl 1.0.2d
    openssl openssl 1.0.2e
    openssl openssl 1.0.2f
    openssl openssl 1.0.2h
    openssl openssl 1.0.2i
    openssl openssl 1.1.0a
    openssl openssl 1.1.0b
    openssl openssl 1.1.0c
    openssl openssl 1.0.2
    openssl openssl 1.1.0
    ibm infosphere master data management 10.1
    ibm infosphere information server 9.1
    ibm cognos business intelligence 10.1.1
    ibm cognos business intelligence 10.2
    ibm sterling b2b integrator 5.2
    ibm sametime 8.5.2
    ibm sametime 8.5.2.1
    ibm rational insight 1.1.1.5
    ibm rational insight 1.1.1.5
    ibm infosphere master data management 11.0
    ibm integration bus 9.0
    ibm cognos business intelligence 10.2.1
    ibm campaign 9.1
    ibm sametime 9.0.0.0
    ibm sametime 9.0.0.1
    ibm cognos business intelligence 10.2.1.1
    ibm sterling b2b integrator 5.2.4
    ibm cognos tm1 10.2.2
    ibm infosphere information server 11.3
    ibm i 7.1
    ibm i 7.2
    ibm sterling b2b integrator 5.2.1
    ibm sterling b2b integrator 5.2.2
    ibm sterling b2b integrator 5.2.3
    ibm infosphere master data management 11.3
    ibm infosphere master data management 11.4
    ibm rational insight 1.1.1.5
    ibm cognos tm1 10.2
    ibm rational software architect 9.1.0
    ibm rational software architect 9.1.1
    ibm cognos business intelligence 10.2.2
    ibm sterling b2b integrator 5.2.5
    ibm campaign 9.1.1
    ibm rational software architect 9.1.2
    ibm infosphere information server 11.5
    ibm flex system manager node 7955 -
    ibm systems director 5.20
    ibm spectrum protect for virtual environments 7.1
    oracle jd edwards enterpriseone tools 9.2
    oracle agile engineering data management 6.1.3.0
    ibm infosphere master data management 11.5
    ibm integration bus 10.0
    ibm rational software architect 9.1.2.1
    ibm campaign 9.1.2
    ibm sterling b2b integrator 5.2.6
    oracle tuxedo 12.1.1
    oracle api gateway 11.1.2.4.0
    oracle transportation management 6.1
    oracle transportation management 6.2
    oracle agile engineering data management 6.2.0.0
    ibm i 7.3
    ibm sametime 9.0.1
    oracle enterprise manager ops center 12.2.2
    oracle enterprise manager ops center 12.3.2
    oracle endeca server 7.3.0.0
    oracle endeca server 7.4.0.0
    oracle endeca server 7.5.0.0
    oracle endeca server 7.6.0.0
    oracle communications security gateway 3.0.0
    oracle enterprise manager 12.1.0.4
    ibm spss statistics 23.0.0.3