Vulnerability Name:

CVE-2018-5382

Assigned:2018-03-19
Published:2018-03-19
Updated:2018-05-22
Summary:Bouncy Castle BKS version 1 keystore (BKS-V1) files use an HMAC that is only 16 bits long, which can allow an attacker to compromise the integrity of a BKS-V1 keystore. All BKS-V1 keystores are vulnerable. Bouncy Castle release 1.47 introduces BKS version 2, which uses a 160-bit MAC.
CVSS v3 Severity:9.8 Critical (CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (Temporal CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
4.4 Medium (CCN CVSS v3 Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N)
3.9 Low (CCN Temporal CVSS v3 Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
3.2 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:P/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-310
References:Source: BID
Type: VENDOR_ADVISORY
103453

Source: XF
Type: UNKNOWN
bouncy-castle-cve20185382-info-disc(140465)

Source: MISC
Type: VENDOR_ADVISORY
https://www.bouncycastle.org/releasenotes.html

Source: CERT-VN
Type: VENDOR_ADVISORY
VU#306792

Vulnerable Configuration:Configuration 1:
  • cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.01:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.02:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.03:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.04:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.05:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.06:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.07:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.08:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.09:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.10:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.11:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.12:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.13:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.14:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.15:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.16:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.17:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.18:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.19:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.20:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.21:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.22:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.23:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.24:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.25:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.26:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.27:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.28:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.29:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.30:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.31:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.32:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.33:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.34:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.35:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.36:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.37:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.38:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.39:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.40:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.41:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.42:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.43:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.44:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.45:*:*:*:*:*:*:*
  • OR cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.46:*:*:*:*:*:*:*

  • Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:com.ubuntu.artful:def:20185382000
    V
    CVE-2018-5382 on Ubuntu 17.10 (artful) - medium.
    2018-04-16
    oval:com.ubuntu.xenial:def:20185382000
    V
    CVE-2018-5382 on Ubuntu 16.04 LTS (xenial) - medium.
    2018-04-16
    oval:com.ubuntu.trusty:def:20185382000
    V
    CVE-2018-5382 on Ubuntu 14.04 LTS (trusty) - medium.
    2018-04-16
    BACK
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.01
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.02
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.03
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.04
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.05
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.06
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.07
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.08
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.09
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.10
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.11
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.12
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.13
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.14
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.15
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.16
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.17
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.18
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.19
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.20
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.21
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.22
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.23
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.24
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.25
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.26
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.27
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.28
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.29
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.30
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.31
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.32
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.33
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.34
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.35
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.36
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.37
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.38
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.39
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.40
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.41
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.42
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.43
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.44
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.45
    bouncycastle legion-of-the-bouncy-castle-java-crytography-api 1.46