CVE-2023-37464

2023-07-1421:15:08

CWE-327

[email protected]

web.nvd.nist.gov

openidc/cjose

aes gcm

authentication tag

encryption

vulnerability

cve-2023-37464

8.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.9%

JSON

OpenIDC/cjose is a C library implementing the Javascript Object Signing and Encryption (JOSE). The AES GCM decryption routine incorrectly uses the Tag length from the actual Authentication Tag provided in the JWE. The spec says that a fixed length of 16 octets must be applied. Therefore this bug allows an attacker to provide a truncated Authentication Tag and to modify the JWE accordingly. Users should upgrade to a version >= 0.6.2.2. Users unable to upgrade should avoid using AES GCM encryption and replace it with another encryption algorithm (e.g. AES CBC).

Affected configurations

Vulners

NVD

Node

openidcmod_auth_openidcRange<0.6.2.2

VendorProductVersionCPE
openidcmod_auth_openidc*cpe:2.3:a:openidc:mod_auth_openidc:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
openidc	mod_auth_openidc	*	cpe:2.3:a:openidc:mod_auth_openidc::::::::

CNA Affected

[
  {
    "vendor": "OpenIDC",
    "product": "cjose",
    "versions": [
      {
        "version": "< 0.6.2.2",
        "status": "affected"
      }
    ]
  }
]