CVE-2024-2881 Fault Injection of EdDSA signature in WolfCrypt

2024-08-2923:10:59

CWE-1256

CWE-252

wolfSSL

www.cve.org

cve-2024-2881

wolfcrypt

fault injection

eddsa signature

wolfssl

linux

windows

remote attacker

information disclosure

privilege escalation

rowhammer fault injection

ed25519_key structure

CVSS3

6.7

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L

EPSS

0.001

Percentile

20.0%

JSON

Fault Injection vulnerability in wc_ed25519_sign_msg function in wolfssl/wolfcrypt/src/ed25519.c in WolfSSL wolfssl5.6.6 on Linux/Windows allows remote attacker co-resides in the same system with a victim process to disclose information and escalate privileges via Rowhammer fault injection to the ed25519_key structure.

CNA Affected

[
  {
    "collectionURL": "https://github.com/wolfSSL/wolfssl",
    "defaultStatus": "affected",
    "modules": [
      "EdDSA signature system"
    ],
    "packageName": "wolfssl",
    "platforms": [
      "Linux",
      "Windows",
      "64 bit",
      "32 bit"
    ],
    "product": "wolfCrypt",
    "programFiles": [
      "https://github.com/wolfSSL/wolfssl/blob/master/wolfcrypt/src/ed25519.c"
    ],
    "programRoutines": [
      {
        "name": "Ed25519 signature"
      }
    ],
    "repo": "https://github.com/wolfSSL/wolfssl",
    "vendor": "WolfSSL",
    "versions": [
      {
        "lessThanOrEqual": "5.6.6",
        "status": "affected",
        "version": "0",
        "versionType": "git"
      }
    ]
  }
]